Description
Stored cross-site scripting vulnerability in Zenphoto versions prior to 1.6 allows remote a remote authenticated attacker with an administrative privilege to inject an arbitrary script.
Remediation
References
Related Vulnerabilities
Drupal Core 8.6.x Multiple Vulnerabilities (8.6.0 - 8.6.1)
PrestaShop Improper Privilege Management Vulnerability (CVE-2023-43663)
Squid Improper Input Validation Vulnerability (CVE-2013-1839)
PHP Resource Management Errors Vulnerability (CVE-2007-4660)
WebLogic Deserialization of Untrusted Data Vulnerability (CVE-2020-9547)