mirror of
https://github.com/0xMarcio/cve.git
synced 2025-05-28 09:12:08 +00:00
737 B
737 B
CVE-2018-14478
Description
ecard.php in Coppermine Photo Gallery (CPG) 1.5.46 has XSS via the sender_name, recipient_email, greetings, or recipient_name parameter.
POC
Reference
- http://packetstormsecurity.com/files/151306/Coppermine-1.5.46-Cross-Site-Scripting.html
- http://packetstormsecurity.com/files/151306/Coppermine-1.5.46-Cross-Site-Scripting.html
Github
No PoCs found on GitHub currently.