Description

Cross-site scripting (XSS) vulnerability in Zenphoto before 1.4.3 allows remote attackers to inject arbitrary web script or HTML by triggering improper interaction with an unspecified library.

Remediation

References

CVE-2012-2641

Related Vulnerabilities

Jboss EAP Exposure of Sensitive Information to an Unauthorized Actor Vulnerability (CVE-2017-2582)

WordPress Plugin MetaSlider Cross-Site Scripting (2.6.2)

Grafana Authentication Bypass by Spoofing Vulnerability (CVE-2022-35957)

phpMyAdmin Exposure of Sensitive Information to an Unauthorized Actor Vulnerability (CVE-2016-2039)

Liferay Portal Improper Authentication Vulnerability (CVE-2021-29047)

Severity

Medium

Classification

CVE-2012-2641 CWE-707

Tags

Missing Update Known Vulnerabilities