Vulnerabilidades en Zenphoto
7 resultadosCVE-2018-0610—Local file inclusion vulnerability in Zenphoto 1.4.14 and earlier allows a remote attacker with an administrative privilege to execute arbitEPSS 1.8%CVE-2020-5593—Zenphoto versions prior to 1.5.7 allows an attacker to conduct PHP code injection attacks by leading a user to upload a specially crafted .zEPSS 1.2%CVE-2020-5592—Cross-site scripting vulnerability in Zenphoto versions prior to 1.5.7 allows remote attackers to inject an arbitrary JavaScript via unspeciEPSS 0.8%CVE-2022-44449MEDIUMStored cross-site scripting vulnerability in Zenphoto versions prior to 1.6 allows remote a remote authenticated attacker with an administraEPSS 0.7%CVE-2012-4519—Zenphoto before 1.4.3.4 admin-news-articles.php date parameter XSS.EPSS 0.7%CVE-2023-53916MEDIUMZenphoto 1.6 Stored Cross-Site Scripting via User Postal Code FieldEPSS 0.3%CVE-2023-53915MEDIUMZenphoto 1.6 Stored Cross-Site Scripting via Album DescriptionEPSS 0.3%