Vulnerabilities > Coppermine Gallery > Medium
| DATE | CVE | VULNERABILITY TITLE | RISK |
|---|---|---|---|
| 2019-05-07 | CVE-2018-14478 | Cross-site Scripting vulnerability in Coppermine-Gallery Coppermine Photo Gallery 1.5.46 ecard.php in Coppermine Photo Gallery (CPG) 1.5.46 has XSS via the sender_name, recipient_email, greetings, or recipient_name parameter. | 6.1 |
| 2018-03-16 | CVE-2014-4612 | Cross-site Scripting vulnerability in Coppermine-Gallery Coppermine Photo Gallery Cross-site scripting (XSS) vulnerability in the keywords manager (keywordmgr.php) in Coppermine Photo Gallery before 1.5.27 and 1.6.x before 1.6.01 allows remote attackers to inject arbitrary web script or HTML via unspecified vectors. | 6.1 |