CVE-2010-4667

Cross-site scripting (XSS) vulnerability in Coppermine Photo Gallery (CPG) before 1.4.27 allows remote attackers to inject arbitrary web script or HTML via unspecified vectors.

Published: Jun 14, 2011
Updated: Apr 13, 2023
CVE: CVE-2010-4667
Severity: Low
Exploit:

CVSS v2:

Severity: Low
Score: 4.3
AV:N/AC:M/Au:N/C:N/I:P/A:N

CWEs:

CWE-79

OWASP TOP 10:

A7 - Cross-Site Scripting (XSS)

Affected Software
References

Software	From	Fixed in
coppermine-gallery / coppermine_photo_gallery	1.4.17	1.4.17.x
coppermine-gallery / coppermine_photo_gallery	1.4.11	1.4.11.x
coppermine-gallery / coppermine_photo_gallery	1.4.19	1.4.19.x
coppermine-gallery / coppermine_photo_gallery	1.4.14	1.4.14.x
coppermine-gallery / coppermine_photo_gallery	1.2.0-rc2	1.2.0-rc2.x
coppermine-gallery / coppermine_photo_gallery	1.4.8	1.4.8.x
coppermine-gallery / coppermine_photo_gallery	1.2.1	1.2.1.x
coppermine-gallery / coppermine_photo_gallery	1.4.23	1.4.23.x
coppermine-gallery / coppermine_photo_gallery	1.4.22	1.4.22.x
coppermine-gallery / coppermine_photo_gallery	1.4.7	1.4.7.x
coppermine-gallery / coppermine_photo_gallery	1.4.0-alpha	1.4.0-alpha.x
coppermine-gallery / coppermine_photo_gallery	-	1.4.26.x
coppermine-gallery / coppermine_photo_gallery	1.4.2	1.4.2.x
coppermine-gallery / coppermine_photo_gallery	1.4.16	1.4.16.x
coppermine-gallery / coppermine_photo_gallery	1.4.3	1.4.3.x
coppermine-gallery / coppermine_photo_gallery	1.2.1-b	1.2.1-b.x
coppermine-gallery / coppermine_photo_gallery	1.2	1.2.x
coppermine-gallery / coppermine_photo_gallery	1.4.0	1.4.0.x
coppermine-gallery / coppermine_photo_gallery	1.4.15	1.4.15.x
coppermine-gallery / coppermine_photo_gallery	1.0-rc3	1.0-rc3.x
coppermine-gallery / coppermine_photo_gallery	1.4.5	1.4.5.x
coppermine-gallery / coppermine_photo_gallery	1.1	1.1.x
coppermine-gallery / coppermine_photo_gallery	1.3.2	1.3.2.x
coppermine-gallery / coppermine_photo_gallery	1.4	1.4.x
coppermine-gallery / coppermine_photo_gallery	1.2.0	1.2.0.x
coppermine-gallery / coppermine_photo_gallery	1.4.4	1.4.4.x
coppermine-gallery / coppermine_photo_gallery	1.4.21	1.4.21.x
coppermine-gallery / coppermine_photo_gallery	1.2.1-b-nuke	1.2.1-b-nuke.x
coppermine-gallery / coppermine_photo_gallery	1.3.4	1.3.4.x
coppermine-gallery / coppermine_photo_gallery	1.4.20	1.4.20.x
coppermine-gallery / coppermine_photo_gallery	1.3.3	1.3.3.x
coppermine-gallery / coppermine_photo_gallery	1.4.0-beta	1.4.0-beta.x
coppermine-gallery / coppermine_photo_gallery	1.4.9	1.4.9.x
coppermine-gallery / coppermine_photo_gallery	1.4.12	1.4.12.x
coppermine-gallery / coppermine_photo_gallery	1.4.13	1.4.13.x
coppermine-gallery / coppermine_photo_gallery	1.3.1	1.3.1.x
coppermine-gallery / coppermine_photo_gallery	1.4.10	1.4.10.x
coppermine-gallery / coppermine_photo_gallery	1.3.5	1.3.5.x
coppermine-gallery / coppermine_photo_gallery	1.4.6	1.4.6.x
coppermine-gallery / coppermine_photo_gallery	1.4.1	1.4.1.x
coppermine-gallery / coppermine_photo_gallery	1.3.0	1.3.0.x
coppermine-gallery / coppermine_photo_gallery	1.1.0	1.1.0.x
coppermine-gallery / coppermine_photo_gallery	1.4.24	1.4.24.x
coppermine-gallery / coppermine_photo_gallery	1.4.1-beta	1.4.1-beta.x
coppermine-gallery / coppermine_photo_gallery	1.0	1.0.x
coppermine-gallery / coppermine_photo_gallery	1.4.25	1.4.25.x
coppermine-gallery / coppermine_photo_gallery	1.4-beta	1.4-beta.x
coppermine-gallery / coppermine_photo_gallery	1.4.18	1.4.18.x
coppermine-gallery / coppermine_photo_gallery	1.1-beta_2	1.1-beta_2.x

Vulnerability Database

CVE-2010-4667

Deep Security Visibility Without the Complexity