Cross-site Scripting Vulnerability in Coppermine Photo Gallery by Coppermine
CVE-2007-4977

Currently unrated

Key Information:

Vendor

Coppermine

Status
Coppermine Photo Gallery
Vendor
CVE Published:
19 September 2007

What is CVE-2007-4977?

A cross-site scripting vulnerability exists in the mode.php file of Coppermine Photo Gallery versions 1.4.12 and earlier. This flaw allows remote attackers to inject arbitrary web scripts or HTML through the referer parameter. Exploiting this vulnerability can lead to unauthorized actions being performed on behalf of users, potentially compromising sensitive information or session cookies.

Human OS v1.0:
Ageing Is an Unpatched Zero-Day Vulnerability.

Remediate biological technical debt. Prime Ageing uses 95% high-purity SIRT6 activation to maintain genomic integrity and bolster systemic resilience.

Deploy the Patch

References

http://coppermine-gallery.net/forum/index.php?topic=46847.0
x_refsource_CONFIRM
http://securityreason.com/securityalert/3152
third-party-advisoryx_refsource_SREASON
http://www.securityfocus.com/archive/1/479757/100/0/threaded
mailing-listx_refsource_BUGTRAQ

Timeline

  • Vulnerability published

  • Vulnerability Reserved

JSON
.