Логотип exploitDog
Консоль
Логотип exploitDog

exploitDog

ubuntu логотип

CVE-2014-1980

Опубликовано: 14 авг. 2014
Источник: ubuntu
Приоритет: medium
CVSS2: 4.3

Описание

Cross-site scripting (XSS) vulnerability in include/functions_metadata.inc.php in Piwigo before 2.4.6 allows remote attackers to inject arbitrary web script or HTML via the Make field in IPTC Exif metadata within an image uploaded to the Community plugin.

РелизСтатусПримечание
devel

DNE

esm-infra-legacy/trusty

DNE

lucid

DNE

precise

ignored

end of life
precise/esm

DNE

precise was needed
trusty

DNE

trusty/esm

DNE

upstream

released

2.4.6
utopic

DNE

vivid

DNE

Показывать по

Ссылки на источники

4.3 Medium

CVSS2

Связанные уязвимости

nvd логотип

CVE-2014-1980

nvd
больше 11 лет назад

Cross-site scripting (XSS) vulnerability in include/functions_metadata.inc.php in Piwigo before 2.4.6 allows remote attackers to inject arbitrary web script or HTML via the Make field in IPTC Exif metadata within an image uploaded to the Community plugin.

debian логотип

CVE-2014-1980

debian
больше 11 лет назад

Cross-site scripting (XSS) vulnerability in include/functions_metadata ...

github логотип

GHSA-xfhj-62hp-rv2f

github
больше 3 лет назад

Cross-site scripting (XSS) vulnerability in include/functions_metadata.inc.php in Piwigo before 2.4.6 allows remote attackers to inject arbitrary web script or HTML via the Make field in IPTC Exif metadata within an image uploaded to the Community plugin.

4.3 Medium

CVSS2