Description
Cross-site scripting (XSS) vulnerability in contact.php in Coppermine Photo Gallery before 1.5.36 allows remote authenticated users to inject arbitrary web script or HTML via the referer parameter.
Remediation
References
Related Vulnerabilities
Oracle Database Server CVE-2012-1747 Vulnerability (CVE-2012-1747)
WordPress CVE-2012-2399 Vulnerability (CVE-2012-2399)
Opencart Improper Restriction of XML External Entity Reference Vulnerability (CVE-2014-3990)
WordPress Plugin User Submitted Posts Cross-Site Scripting (20151113)
WordPress Plugin Product Addons & Fields for WooCommerce Same Origin Method Execution (SOME) (14.0)