Description
Multiple cross-site scripting (XSS) vulnerabilities in Coppermine Photo Gallery 1.5.10 and earlier allow remote attackers to inject arbitrary web script or HTML via the (1) h and (2) t parameters to help.php, or (3) picfile_XXX parameter to searchnew.php.
Remediation
References
Related Vulnerabilities
WordPress Plugin CigiCigi Post Guest Cross-Site Scripting (1.0.5)
WordPress Plugin ULTIMATE VIDEO GALLERY Cross-Site Scripting (1.4)
Squid Improper Input Validation Vulnerability (CVE-2020-25097)
MySQL CVE-2015-0500 Vulnerability (CVE-2015-0500)
WordPress Plugin PHP Event Calendar for WordPress Arbitrary File Upload (1.6)