CVE-2012-1613

Published: Sep 4, 2012

Modified: Sep 16, 2024

PUBLISHED

Description

Cross-site scripting (XSS) vulnerability in edit_one_pic.php in Coppermine Photo Gallery before 1.5.20 allows remote authenticated users with certain privileges to inject arbitrary web script or HTML via the keywords parameter.

Vendor	Product	Versions
n/a	n/a	affected `n/a`

References

20120329 [waraxe-2012-SA#081] - Multiple Vulnerabilities in Coppermine 1.5.18

mailing-list

x_refsource_BUGTRAQ

http://www.waraxe.us/advisory-81.html

x_refsource_MISC

80731

vdb-entry

x_refsource_OSVDB

http://packetstormsecurity.org/files/111369/Coppermine-1.5.18-Cross-Site-Scripting-Path-Disclosure.html

x_refsource_MISC

18680

exploit

x_refsource_EXPLOIT-DB

48643

third-party-advisory

x_refsource_SECUNIA

http://coppermine.svn.sourceforge.net/viewvc/coppermine/trunk/cpg1.6.x/edit_one_pic.php?r1=8348&r2=8354

x_refsource_CONFIRM

52818

vdb-entry

x_refsource_BID

[oss-security] 20120330 Re: CVE-request: Coppermine 1.5.18 waraxe-2012-SA#081

mailing-list

x_refsource_MLIST

http://forum.coppermine-gallery.net/index.php/topic%2C74682.0.html

x_refsource_CONFIRM

[oss-security] 20120403 Re: CVE-request: Coppermine 1.5.18 waraxe-2012-SA#081

mailing-list

x_refsource_MLIST

[oss-security] 20120330 CVE-request: Coppermine 1.5.18 waraxe-2012-SA#081

mailing-list

x_refsource_MLIST

Security Training

Train your team to recognize and prevent security threats with our comprehensive security awareness program.

Start Training

Vulnerability Scanning

Discover vulnerabilities in your applications and infrastructure before attackers do.

Scan Now

CVE-2012-1613

Description

Affected Products

References