Cross-Site Scripting Vulnerability in Zenphoto Image Processor
CVE-2015-2948
Currently unrated
What is CVE-2015-2948?
A cross-site scripting (XSS) vulnerability exists in the image processor of Zenphoto prior to version 1.4.8. This flaw permits remote attackers to inject malicious web scripts or HTML through unspecified techniques, potentially compromising user interactions and data integrity.