CVE-2010-4693

NONE
Published Jan 11, 201115y ago · Modified Jun 16, 20262w ago
Find Similar
Published Jan 11, 2011 15y ago
Last Modified Jun 16, 2026 2w ago

Description

Multiple cross-site scripting (XSS) vulnerabilities in Coppermine Photo Gallery 1.5.10 and earlier allow remote attackers to inject arbitrary web script or HTML via the (1) h and (2) t parameters to help.php, or (3) picfile_XXX parameter to searchnew.php.

Threat Intelligence

No active exploitation signals — not in CISA KEV and no EPSS score yet.

Exploit & Patch Status
Public Exploit Known
No Patch Available

Weaknesses 1

CWE-79 Cross-site Scripting Injection

Affected Products 57

VendorProductVersionRange
coppermine-gallerycoppermine_photo_gallery* ≤1.5.10
coppermine-gallerycoppermine_photo_gallery1.0any
coppermine-gallerycoppermine_photo_gallery1.0any
coppermine-gallerycoppermine_photo_gallery1.1any
coppermine-gallerycoppermine_photo_gallery1.1any
coppermine-gallerycoppermine_photo_gallery1.1.0any
coppermine-gallerycoppermine_photo_gallery1.2any
coppermine-gallerycoppermine_photo_gallery1.2.0any
coppermine-gallerycoppermine_photo_gallery1.2.0any
coppermine-gallerycoppermine_photo_gallery1.2.1any
coppermine-gallerycoppermine_photo_gallery1.2.1any
coppermine-gallerycoppermine_photo_gallery1.2.1any
coppermine-gallerycoppermine_photo_gallery1.3.0any
coppermine-gallerycoppermine_photo_gallery1.3.1any
coppermine-gallerycoppermine_photo_gallery1.3.2any
coppermine-gallerycoppermine_photo_gallery1.3.3any
coppermine-gallerycoppermine_photo_gallery1.3.4any
coppermine-gallerycoppermine_photo_gallery1.3.5any
coppermine-gallerycoppermine_photo_gallery1.4any
coppermine-gallerycoppermine_photo_gallery1.4any
coppermine-gallerycoppermine_photo_gallery1.4.0any
coppermine-gallerycoppermine_photo_gallery1.4.0any
coppermine-gallerycoppermine_photo_gallery1.4.0any
coppermine-gallerycoppermine_photo_gallery1.4.1any
coppermine-gallerycoppermine_photo_gallery1.4.1any
coppermine-gallerycoppermine_photo_gallery1.4.2any
coppermine-gallerycoppermine_photo_gallery1.4.3any
coppermine-gallerycoppermine_photo_gallery1.4.4any
coppermine-gallerycoppermine_photo_gallery1.4.5any
coppermine-gallerycoppermine_photo_gallery1.4.6any
coppermine-gallerycoppermine_photo_gallery1.4.7any
coppermine-gallerycoppermine_photo_gallery1.4.8any
coppermine-gallerycoppermine_photo_gallery1.4.9any
coppermine-gallerycoppermine_photo_gallery1.4.10any
coppermine-gallerycoppermine_photo_gallery1.4.11any
coppermine-gallerycoppermine_photo_gallery1.4.12any
coppermine-gallerycoppermine_photo_gallery1.4.13any
coppermine-gallerycoppermine_photo_gallery1.4.14any
coppermine-gallerycoppermine_photo_gallery1.4.15any
coppermine-gallerycoppermine_photo_gallery1.4.16any
coppermine-gallerycoppermine_photo_gallery1.4.17any
coppermine-gallerycoppermine_photo_gallery1.4.18any
coppermine-gallerycoppermine_photo_gallery1.4.19any
coppermine-gallerycoppermine_photo_gallery1.4.20any
coppermine-gallerycoppermine_photo_gallery1.4.21any
coppermine-gallerycoppermine_photo_gallery1.4.22any
coppermine-gallerycoppermine_photo_gallery1.4.23any
coppermine-gallerycoppermine_photo_gallery1.4.24any
coppermine-gallerycoppermine_photo_gallery1.4.25any
coppermine-gallerycoppermine_photo_gallery1.4.26any
coppermine-gallerycoppermine_photo_gallery1.4.27any
coppermine-gallerycoppermine_photo_gallery1.5.1any
coppermine-gallerycoppermine_photo_gallery1.5.2any
coppermine-gallerycoppermine_photo_gallery1.5.3any
coppermine-gallerycoppermine_photo_gallery1.5.4any
coppermine-gallerycoppermine_photo_gallery1.5.6any
coppermine-gallerycoppermine_photo_gallery1.5.8any

References 7

Remediation

No remediation data recorded yet

Check vendor advisories and the NVD entry for patch availability.