Lucene search

RedhatCVELIST:CVE-2012-1613

HistoryOct 03, 2022 - 4:15 p.m.

CVE-2012-1613

2022-10-0316:15:24

redhat

www.cve.org

cve-2012-1613

cross-site scripting

coppermine photo gallery

5.2 Medium

AI Score

Confidence

High

0.002 Low

EPSS

Percentile

56.6%

JSON

Cross-site scripting (XSS) vulnerability in edit_one_pic.php in Coppermine Photo Gallery before 1.5.20 allows remote authenticated users with certain privileges to inject arbitrary web script or HTML via the keywords parameter.

References

archives.neohapsis.com/archives/bugtraq/2012-03/0167.html

coppermine.svn.sourceforge.net/viewvc/coppermine/trunk/cpg1.6.x/edit_one_pic.php?r1=8348&r2=8354

forum.coppermine-gallery.net/index.php/topic%2C74682.0.html

osvdb.org/80731

packetstormsecurity.org/files/111369/Coppermine-1.5.18-Cross-Site-Scripting-Path-Disclosure.html

secunia.com/advisories/48643

www.exploit-db.com/exploits/18680

www.openwall.com/lists/oss-security/2012/03/30/5

www.openwall.com/lists/oss-security/2012/03/30/6

www.openwall.com/lists/oss-security/2012/04/03/6

www.securityfocus.com/bid/52818

www.waraxe.us/advisory-81.html