Description
Cross-site scripting (XSS) vulnerability in contact.php in Coppermine Photo Gallery before 1.5.36 allows remote authenticated users to inject arbitrary web script or HTML via the referer parameter.
Remediation
References
Related Vulnerabilities
Grafana Incorrect Authorization Vulnerability (CVE-2022-21713)
WordPress Plugin Adminer Multiple Cross-Site Scripting Vulnerabilities (1.4.3)
Apache Traffic Server CVE-2015-5168 Vulnerability (CVE-2015-5168)
WordPress Plugin Profile Builder-User Profile & User Registration Forms Cross-Site Scripting (3.4.7)
Drupal Core 4.6.x Form Action Attribute Injection (4.6.0 - 4.6.9)