CVE-2010-4667

NONE
Published Jun 14, 201115y ago · Modified Jun 16, 20262w ago
Find Similar
Published Jun 14, 2011 15y ago
Last Modified Jun 16, 2026 2w ago

Description

Cross-site scripting (XSS) vulnerability in Coppermine Photo Gallery (CPG) before 1.4.27 allows remote attackers to inject arbitrary web script or HTML via unspecified vectors.

Threat Intelligence

No active exploitation signals — not in CISA KEV and no EPSS score yet.

Exploit & Patch Status
No Known Exploit
Patch Available

Weaknesses 1

CWE-79 Cross-site Scripting Injection

Affected Products 49

VendorProductVersionRange
coppermine-gallerycoppermine_photo_gallery* ≤1.4.26
coppermine-gallerycoppermine_photo_gallery1.0any
coppermine-gallerycoppermine_photo_gallery1.0any
coppermine-gallerycoppermine_photo_gallery1.1any
coppermine-gallerycoppermine_photo_gallery1.1any
coppermine-gallerycoppermine_photo_gallery1.1.0any
coppermine-gallerycoppermine_photo_gallery1.2any
coppermine-gallerycoppermine_photo_gallery1.2.0any
coppermine-gallerycoppermine_photo_gallery1.2.0any
coppermine-gallerycoppermine_photo_gallery1.2.1any
coppermine-gallerycoppermine_photo_gallery1.2.1any
coppermine-gallerycoppermine_photo_gallery1.2.1any
coppermine-gallerycoppermine_photo_gallery1.3.0any
coppermine-gallerycoppermine_photo_gallery1.3.1any
coppermine-gallerycoppermine_photo_gallery1.3.2any
coppermine-gallerycoppermine_photo_gallery1.3.3any
coppermine-gallerycoppermine_photo_gallery1.3.4any
coppermine-gallerycoppermine_photo_gallery1.3.5any
coppermine-gallerycoppermine_photo_gallery1.4any
coppermine-gallerycoppermine_photo_gallery1.4any
coppermine-gallerycoppermine_photo_gallery1.4.0any
coppermine-gallerycoppermine_photo_gallery1.4.0any
coppermine-gallerycoppermine_photo_gallery1.4.0any
coppermine-gallerycoppermine_photo_gallery1.4.1any
coppermine-gallerycoppermine_photo_gallery1.4.1any
coppermine-gallerycoppermine_photo_gallery1.4.2any
coppermine-gallerycoppermine_photo_gallery1.4.3any
coppermine-gallerycoppermine_photo_gallery1.4.4any
coppermine-gallerycoppermine_photo_gallery1.4.5any
coppermine-gallerycoppermine_photo_gallery1.4.6any
coppermine-gallerycoppermine_photo_gallery1.4.7any
coppermine-gallerycoppermine_photo_gallery1.4.8any
coppermine-gallerycoppermine_photo_gallery1.4.9any
coppermine-gallerycoppermine_photo_gallery1.4.10any
coppermine-gallerycoppermine_photo_gallery1.4.11any
coppermine-gallerycoppermine_photo_gallery1.4.12any
coppermine-gallerycoppermine_photo_gallery1.4.13any
coppermine-gallerycoppermine_photo_gallery1.4.14any
coppermine-gallerycoppermine_photo_gallery1.4.15any
coppermine-gallerycoppermine_photo_gallery1.4.16any
coppermine-gallerycoppermine_photo_gallery1.4.17any
coppermine-gallerycoppermine_photo_gallery1.4.18any
coppermine-gallerycoppermine_photo_gallery1.4.19any
coppermine-gallerycoppermine_photo_gallery1.4.20any
coppermine-gallerycoppermine_photo_gallery1.4.21any
coppermine-gallerycoppermine_photo_gallery1.4.22any
coppermine-gallerycoppermine_photo_gallery1.4.23any
coppermine-gallerycoppermine_photo_gallery1.4.24any
coppermine-gallerycoppermine_photo_gallery1.4.25any

References 4

Remediation

  • bugs.gentoo.org http://bugs.gentoo.org/show_bug.cgi?id=347287
    Patch
  • openwall.com http://www.openwall.com/lists/oss-security/2011/06/08/2
    Patch
  • openwall.com http://www.openwall.com/lists/oss-security/2011/06/08/6
    Patch