Published: 30/04/2004 Updated: 11/07/2017

CVSS v2 Base Score: 4.3 | Impact Score: 2.9 | Exploitability Score: 8.6

VMScore: 435

Vector: AV:N/AC:M/Au:N/C:N/I:P/A:N

Cross-site scripting (XSS) vulnerability in menu.inc.php in Coppermine Photo Gallery 1.2.2b allows remote malicious users to inject arbitrary HTML or web script via the CPG_URL parameter.

Vulnerable Product	Search on Vulmon	Subscribe to Product
coppermine coppermine photo gallery 1.1 beta 2
coppermine coppermine photo gallery 1.2
francisco burzi php-nuke 7.0
francisco burzi php-nuke 7.2
francisco burzi php-nuke 7.0 final
coppermine coppermine photo gallery 1.0 rc3
coppermine coppermine photo gallery 1.2.2 b
coppermine coppermine photo gallery 1.2.1
coppermine coppermine photo gallery 1.1 .0
francisco burzi php-nuke 6.9
francisco burzi php-nuke 7.1

source: wwwsecurityfocuscom/bid/10253/info Coppermine Photo Gallery is reported prone to multiple input-validation vulnerabilities, some of which may lead to arbitrary command execution These issues occur because the application fails to properly sanitize and validate user-supplied input before using it in dynamic content and in function ...

NVD-CWE-Other http://www.waraxe.us/index.php?modname=sa&id=26 http://www.securityfocus.com/bid/10253 http://secunia.com/advisories/11524 http://www.osvdb.org/5757 http://marc.info/?l=bugtraq&m=108360247732014&w=2 https://exchange.xforce.ibmcloud.com/vulnerabilities/16040 https://nvd.nist.gov https://www.exploit-db.com/exploits/24072/

Get Started

Vulmon Search is a vulnerability search engine. It gives comprehensive vulnerability information through a very simple user interface.

Home Recent Vulnerabilities Product List Vendor List Research Posts Trends Blog About Contact

Vulmon Search Vulmon Research Vulmon Alerts Vulmap

Twitter Reddit Linkedin Facebook

CVE-2004-1985

Vulnerability Summary

Exploits

References

Vulmon Search

About

Products

Connect