Description
Cross-site scripting (XSS) vulnerability in contact.php in Coppermine Photo Gallery before 1.5.36 allows remote authenticated users to inject arbitrary web script or HTML via the referer parameter.
Remediation
References
Related Vulnerabilities
Jboss EAP Uncontrolled Resource Consumption Vulnerability (CVE-2014-0118)
WordPress Plugin Gallery-Video Gallery and Youtube Gallery Multiple Vulnerabilities (2.0.3)
PostgreSQL Permissions, Privileges, and Access Controls Vulnerability (CVE-2014-0067)
OpenSSL Improper Input Validation Vulnerability (CVE-2010-0433)
WordPress Plugin Google Alert And Twitter Multiple Vulnerabilities (3.1.5)