Shodan
Maps
Images
Monitor
Developer
More...
Dashboard
View Api Docs
Vulnerabilities
By Date
Known Exploited
Advanced Search
Vulnerable Software
Vendors
Products
Vulnerability Details CVE-2008-0505
Multiple cross-site scripting (XSS) vulnerabilities in docs/showdoc.php in Coppermine Photo Gallery (CPG) before 1.4.15 allow remote attackers to inject arbitrary web script or HTML via the (1) h and (2) t parameters.
Exploit prediction scoring system (EPSS) score
EPSS Score
0.005
EPSS Ranking
65.6%
CVSS Severity
CVSS v2 Score
4.3
References
http://coppermine-gallery.net/forum/index.php?topic=50103.0
http://secunia.com/advisories/28682
http://www.securityfocus.com/archive/1/487351/100/200/threaded
http://www.securityfocus.com/bid/27511
http://www.securitytracker.com/id?1019285
http://www.vupen.com/english/advisories/2008/0367
http://www.waraxe.us/advisory-66.html
http://coppermine-gallery.net/forum/index.php?topic=50103.0
http://secunia.com/advisories/28682
http://www.securityfocus.com/archive/1/487351/100/200/threaded
http://www.securityfocus.com/bid/27511
http://www.securitytracker.com/id?1019285
http://www.vupen.com/english/advisories/2008/0367
http://www.waraxe.us/advisory-66.html
Products affected by CVE-2008-0505
Coppermine
»
Coppermine Photo Gallery
»
Version:
Any
cpe:2.3:a:coppermine:coppermine_photo_gallery:*
Coppermine
»
Coppermine Photo Gallery
»
Version:
1.4.10
cpe:2.3:a:coppermine:coppermine_photo_gallery:1.4.10
Coppermine
»
Coppermine Photo Gallery
»
Version:
1.4.11
cpe:2.3:a:coppermine:coppermine_photo_gallery:1.4.11
Coppermine
»
Coppermine Photo Gallery
»
Version:
1.4.12
cpe:2.3:a:coppermine:coppermine_photo_gallery:1.4.12
Coppermine
»
Coppermine Photo Gallery
»
Version:
1.4.13
cpe:2.3:a:coppermine:coppermine_photo_gallery:1.4.13
Products
Monitor
Search Engine
Developer API
Maps
Bulk Data
Images
Snippets
Pricing
Membership
API Subscriptions
Enterprise
Contact Us
support@shodan.io
Shodan ® - All rights reserved