CVE Vulnerabilities

CVE-2004-1985

Published: Apr 30, 2004 | Modified: Jul 11, 2017
CVSS 3.x
N/A
Source:
NVD
CVSS 2.x
4.3 MEDIUM
AV:N/AC:M/Au:N/C:N/I:P/A:N
RedHat/V2
RedHat/V3
Ubuntu

Cross-site scripting (XSS) vulnerability in menu.inc.php in Coppermine Photo Gallery 1.2.2b allows remote attackers to inject arbitrary HTML or web script via the CPG_URL parameter.

Affected Software

Name Vendor Start Version End Version
Coppermine_photo_gallery Coppermine 1.0_rc3 (including) 1.0_rc3 (including)
Coppermine_photo_gallery Coppermine 1.1_.0 (including) 1.1_.0 (including)
Coppermine_photo_gallery Coppermine 1.1_beta_2 (including) 1.1_beta_2 (including)
Coppermine_photo_gallery Coppermine 1.2 (including) 1.2 (including)
Coppermine_photo_gallery Coppermine 1.2.1 (including) 1.2.1 (including)
Coppermine_photo_gallery Coppermine 1.2.2_b (including) 1.2.2_b (including)
Php-nuke Francisco_burzi 6.9 (including) 6.9 (including)
Php-nuke Francisco_burzi 7.0 (including) 7.0 (including)
Php-nuke Francisco_burzi 7.0_final (including) 7.0_final (including)
Php-nuke Francisco_burzi 7.1 (including) 7.1 (including)
Php-nuke Francisco_burzi 7.2 (including) 7.2 (including)

References