CVE-2009-4563 | ZenPhoto 1.2.5 admin-options.php cross site scripting (EDB-9166 / XFDB-51782)
A vulnerability was found in ZenPhoto 1.2.5. It has been rated as problematic. This issue affects some unknown processing of the file zp-core/admin-options.php. The manipulation leads to cross site scripting.
The identification of this vulnerability is CVE-2009-4563. The attack may be initiated remotely. Furthermore, there is an exploit available.
It is recommended to add further authentication.