Cross-site Scripting Vulnerability in Coppermine Photo Gallery by Coppermine
CVE-2011-2476

Currently unrated

Key Information:

Vendor: Coppermine-gallery
Status: Coppermine Photo Gallery
Vendor: CVE Published:; 14 June 2011

🔔 Create Coppermine-gallery Vulnerability Alert

What is CVE-2011-2476?

A cross-site scripting (XSS) vulnerability exists in the Coppermine Photo Gallery up to version 1.5.12, allowing remote attackers to inject arbitrary web scripts or HTML into the application. This security flaw could enable unauthorized actions or data leakage, posing risks to users and their information. It is crucial for users of the affected versions to implement necessary updates to mitigate these security risks.

References

http://www.openwall.com/lists/oss-security/2011/06/08/2

mailing-listx_refsource_MLIST

http://www.openwall.com/lists/oss-security/2011/06/08/6

mailing-listx_refsource_MLIST

http://forum.coppermine-gallery.net/index.php/topic%2C694...

x_refsource_CONFIRM

Download the Critical Vulnerability Management Cheat Sheet

Timeline

Vulnerability published
Jun 14, 2011
Vulnerability Reserved
Jun 14, 2011

JSON