Cross-site scripting (XSS) vulnerability in displayimage.php in Coppermine Photo Gallery before 1.3.4 allows remote attackers to inject arbitrary web script or HTML via EXIF data.Referenceshttp://coppermine-gallery.net/forum/index.php?topic=20933.0http://secunia.com/advisories/16499http://securitytracker.com/id?1014799http://www.securityfocus.com/bid/14625
