CVE-2015-2982

Name of the Vulnerable Software and Affected Versions PHP Kobo Photo Gallery CMS version 1.0.1 Free and earlier

Description The issue is related to a cross-site scripting (XSS) vulnerability. This vulnerability allows remote authenticated users to inject arbitrary web script or HTML via unspecified input to the "admin.php" endpoint.

Recommendations For PHP Kobo Photo Gallery CMS version 1.0.1 Free and earlier, update to a version that includes a fix for this issue, as no specific workaround is provided for these versions. At the moment, there is no information about a newer version that contains a fix for this vulnerability.