Gentoo Websites Logo
Go to: Gentoo Home Documentation Forums Lists Bugs Planet Store Wiki Get Gentoo!

Bug 372903

Summary: <www-apps/coppermine-1.4.27: XSS (CVE-2010-4667)
Product: Gentoo Security Reporter: GLSAMaker/CVETool Bot <glsamaker>
Component: VulnerabilitiesAssignee: Gentoo Security <security>
Status: RESOLVED DUPLICATE    
Severity: trivial CC: web-apps
Priority: Normal    
Version: unspecified   
Hardware: All   
OS: Linux   
Whiteboard: ~4 [ebuild]
Package list:
Runtime testing required: ---

Description GLSAMaker/CVETool Bot gentoo-dev 2011-06-24 20:47:50 UTC 
CVE-2010-4667 (http://nvd.nist.gov/nvd.cfm?cvename=CVE-2010-4667):
  Cross-site scripting (XSS) vulnerability in Coppermine Photo Gallery (CPG)
  before 1.4.27 allows remote attackers to inject arbitrary web script or HTML
  via unspecified vectors.


Please punt the vulnerable version.
Comment 1 Tim Sammut (RETIRED) gentoo-dev 2011-06-26 21:24:53 UTC 

*** This bug has been marked as a duplicate of bug 347287 ***