Headline
CVE-2022-44449: GitHub - zenphoto/zenphoto: The Zenphoto open-source gallery and CMS project
Stored cross-site scripting vulnerability in Zenphoto versions prior to 1.6 allows remote a remote authenticated attacker with an administrative privilege to inject an arbitrary script.
Zenphoto****The simpler media website CMS
http://www.zenphoto.org
Welcome to the Zenphoto git repository!
About
Zenphoto is a standalone CMS for multimedia focused websites. Our focus lies on being easy to use and having all the features there when you need them (but out of the way if you do not.)
Zenphoto features support for images, video and audio formats, and the Zenpage CMS plugin provides a fully integrated news section (blog) and custom pages to run entire websites.
This makes Zenphoto the ideal CMS for personal websites of illustrators, artists, designers, photographers, film makers and musicians.
Read more about the features.
Installation, upgrading & requirements
Please see the Installation and upgrading page.
Support
- For general Zenphoto discussions please visit the support forum.
- If you think you have run into a Zenphoto bug please follow the following guidelines: Contributor guidelines - Reporting bugs
- On security issues please always contact us via our contact page
Contributing
For general info about contributing please see the “Get involved” page