Lucene search

[email protected]CVE-2011-2476

HistoryJun 14, 2011 - 5:55 p.m.

CVE-2011-2476

2011-06-1417:55:06

CWE-79

[email protected]

web.nvd.nist.gov

cve-2011-2476

xss

vulnerability

coppermine photo gallery

nvd

4.3 Medium

CVSS2

Attack Vector

NETWORK

Attack Complexity

MEDIUM

Authentication

NONE

Confidentiality Impact

NONE

Integrity Impact

PARTIAL

Availability Impact

NONE

AV:N/AC:M/Au:N/C:N/I:P/A:N

5.8 Medium

AI Score

Confidence

High

0.003 Low

EPSS

Percentile

65.6%

JSON

Cross-site scripting (XSS) vulnerability in Coppermine Photo Gallery (CPG) before 1.5.12 allows remote attackers to inject arbitrary web script or HTML via unspecified vectors, a different vulnerability than CVE-2010-4667.

Affected configurations

NVD

Node

coppermine-gallerycoppermine_photo_gallery

coppermine-gallerycoppermine_photo_galleryRange≤1.5.10

coppermine-gallerycoppermine_photo_galleryMatch1.0

coppermine-gallerycoppermine_photo_galleryMatch1.0rc3

coppermine-gallerycoppermine_photo_galleryMatch1.1

coppermine-gallerycoppermine_photo_galleryMatch1.1beta_2

coppermine-gallerycoppermine_photo_galleryMatch1.1.0

coppermine-gallerycoppermine_photo_galleryMatch1.2

coppermine-gallerycoppermine_photo_galleryMatch1.2.0

coppermine-gallerycoppermine_photo_galleryMatch1.2.0rc2

coppermine-gallerycoppermine_photo_galleryMatch1.2.1

coppermine-gallerycoppermine_photo_galleryMatch1.2.1b

coppermine-gallerycoppermine_photo_galleryMatch1.2.1b-nuke

coppermine-gallerycoppermine_photo_galleryMatch1.3.0

coppermine-gallerycoppermine_photo_galleryMatch1.3.1

coppermine-gallerycoppermine_photo_galleryMatch1.3.2

coppermine-gallerycoppermine_photo_galleryMatch1.3.3

coppermine-gallerycoppermine_photo_galleryMatch1.3.4

coppermine-gallerycoppermine_photo_galleryMatch1.3.5

coppermine-gallerycoppermine_photo_galleryMatch1.4

coppermine-gallerycoppermine_photo_galleryMatch1.4beta

coppermine-gallerycoppermine_photo_galleryMatch1.4.0

coppermine-gallerycoppermine_photo_galleryMatch1.4.0alpha

coppermine-gallerycoppermine_photo_galleryMatch1.4.0beta

coppermine-gallerycoppermine_photo_galleryMatch1.4.1

coppermine-gallerycoppermine_photo_galleryMatch1.4.1beta

coppermine-gallerycoppermine_photo_galleryMatch1.4.2

coppermine-gallerycoppermine_photo_galleryMatch1.4.3

coppermine-gallerycoppermine_photo_galleryMatch1.4.4

coppermine-gallerycoppermine_photo_galleryMatch1.4.5

coppermine-gallerycoppermine_photo_galleryMatch1.4.6

coppermine-gallerycoppermine_photo_galleryMatch1.4.7

coppermine-gallerycoppermine_photo_galleryMatch1.4.8

coppermine-gallerycoppermine_photo_galleryMatch1.4.9

coppermine-gallerycoppermine_photo_galleryMatch1.4.10

coppermine-gallerycoppermine_photo_galleryMatch1.4.11

coppermine-gallerycoppermine_photo_galleryMatch1.4.12

coppermine-gallerycoppermine_photo_galleryMatch1.4.13

coppermine-gallerycoppermine_photo_galleryMatch1.4.14

coppermine-gallerycoppermine_photo_galleryMatch1.4.15

coppermine-gallerycoppermine_photo_galleryMatch1.4.16

coppermine-gallerycoppermine_photo_galleryMatch1.4.17

coppermine-gallerycoppermine_photo_galleryMatch1.4.18

coppermine-gallerycoppermine_photo_galleryMatch1.4.19

coppermine-gallerycoppermine_photo_galleryMatch1.4.20

coppermine-gallerycoppermine_photo_galleryMatch1.4.21

coppermine-gallerycoppermine_photo_galleryMatch1.4.22

coppermine-gallerycoppermine_photo_galleryMatch1.4.23

coppermine-gallerycoppermine_photo_galleryMatch1.4.24

coppermine-gallerycoppermine_photo_galleryMatch1.4.25

coppermine-gallerycoppermine_photo_galleryMatch1.4.26

coppermine-gallerycoppermine_photo_galleryMatch1.4.27

coppermine-gallerycoppermine_photo_galleryMatch1.5.1alpha

coppermine-gallerycoppermine_photo_galleryMatch1.5.2beta

coppermine-gallerycoppermine_photo_galleryMatch1.5.3rc

coppermine-gallerycoppermine_photo_galleryMatch1.5.4

coppermine-gallerycoppermine_photo_galleryMatch1.5.6

coppermine-gallerycoppermine_photo_galleryMatch1.5.8

CPENameOperatorVersion
coppermine-gallery:coppermine_photo_gallerycoppermine-gallery coppermine photo galleryeq*
coppermine-gallery:coppermine_photo_gallerycoppermine-gallery coppermine photo galleryle1.5.10
coppermine-gallery:coppermine_photo_gallerycoppermine-gallery coppermine photo galleryeq1.0
coppermine-gallery:coppermine_photo_gallerycoppermine-gallery coppermine photo galleryeq1.1
coppermine-gallery:coppermine_photo_gallerycoppermine-gallery coppermine photo galleryeq1.1.0
coppermine-gallery:coppermine_photo_gallerycoppermine-gallery coppermine photo galleryeq1.2
coppermine-gallery:coppermine_photo_gallerycoppermine-gallery coppermine photo galleryeq1.2.0
coppermine-gallery:coppermine_photo_gallerycoppermine-gallery coppermine photo galleryeq1.2.1
coppermine-gallery:coppermine_photo_gallerycoppermine-gallery coppermine photo galleryeq1.3.0
coppermine-gallery:coppermine_photo_gallerycoppermine-gallery coppermine photo galleryeq1.3.1

CPE	Name	Operator	Version
coppermine-gallery:coppermine_photo_gallery	coppermine-gallery coppermine photo gallery	eq	*
coppermine-gallery:coppermine_photo_gallery	coppermine-gallery coppermine photo gallery	le	1.5.10
coppermine-gallery:coppermine_photo_gallery	coppermine-gallery coppermine photo gallery	eq	1.0
coppermine-gallery:coppermine_photo_gallery	coppermine-gallery coppermine photo gallery	eq	1.1
coppermine-gallery:coppermine_photo_gallery	coppermine-gallery coppermine photo gallery	eq	1.1.0
coppermine-gallery:coppermine_photo_gallery	coppermine-gallery coppermine photo gallery	eq	1.2
coppermine-gallery:coppermine_photo_gallery	coppermine-gallery coppermine photo gallery	eq	1.2.0
coppermine-gallery:coppermine_photo_gallery	coppermine-gallery coppermine photo gallery	eq	1.2.1
coppermine-gallery:coppermine_photo_gallery	coppermine-gallery coppermine photo gallery	eq	1.3.0
coppermine-gallery:coppermine_photo_gallery	coppermine-gallery coppermine photo gallery	eq	1.3.1

Rows per page:

1-10 of 491

References

forum.coppermine-gallery.net/index.php/topic%2C69495.0.html

sourceforge.net/news/?group_id=89658

www.openwall.com/lists/oss-security/2011/06/08/2

www.openwall.com/lists/oss-security/2011/06/08/6

exchange.xforce.ibmcloud.com/vulnerabilities/68058

4.3 Medium

CVSS2

Attack Vector

NETWORK

Attack Complexity

MEDIUM

Authentication

NONE

Confidentiality Impact

NONE

Integrity Impact

PARTIAL

Availability Impact

NONE

AV:N/AC:M/Au:N/C:N/I:P/A:N

5.8 Medium

AI Score

Confidence

High

0.003 Low

EPSS

Percentile

65.6%

JSON

Related for CVE-2011-2476

prion2 nvd2 cvelist2 cve1