CVE-2010-4667 (http://nvd.nist.gov/nvd.cfm?cvename=CVE-2010-4667): Cross-site scripting (XSS) vulnerability in Coppermine Photo Gallery (CPG) before 1.4.27 allows remote attackers to inject arbitrary web script or HTML via unspecified vectors. Please punt the vulnerable version.
*** This bug has been marked as a duplicate of bug 347287 ***