CVE-2012-0995

Name of the Vulnerable Software and Affected Versions ZENphoto version 1.4.2

Description The issue allows remote attackers to inject arbitrary web script or HTML. This can be achieved via the msg parameter in an external action to "zp-core/admin.php", PATH INFO to "zp-core/admin.php", or the album parameter to "zp-core/admin-edit.php".

Recommendations For ZENphoto version 1.4.2, as a temporary workaround, consider restricting access to the vulnerable parameters msg and album in the affected API endpoints until a patch is available. Avoid using the PATH INFO to "zp-core/admin.php" and restrict access to this endpoint to minimize the risk of exploitation. At the moment, there is no information about a newer version that contains a fix for this vulnerability.