Lucene search

K
cve[email protected]CVE-2003-1146
HistoryOct 03, 2022 - 4:15 p.m.

CVE-2003-1146

2022-10-0316:15:42
web.nvd.nist.gov
16
cve
2003
1146
cross-site scripting
xss
vulnerability
john beatty
easy php
photo album 1.0

6.8 Medium

CVSS2

Attack Vector

NETWORK

Attack Complexity

MEDIUM

Authentication

NONE

Confidentiality Impact

PARTIAL

Integrity Impact

PARTIAL

Availability Impact

PARTIAL

AV:N/AC:M/Au:N/C:P/I:P/A:P

6 Medium

AI Score

Confidence

High

0.003 Low

EPSS

Percentile

71.8%

Cross-site scripting (XSS) vulnerability in John Beatty Easy PHP Photo Album 1.0 allows remote attackers to inject arbitrary web script or HTML via the dir parameter.

Affected configurations

NVD
Node
john_beattyeasy_php_photo_albumMatch1.0

6.8 Medium

CVSS2

Attack Vector

NETWORK

Attack Complexity

MEDIUM

Authentication

NONE

Confidentiality Impact

PARTIAL

Integrity Impact

PARTIAL

Availability Impact

PARTIAL

AV:N/AC:M/Au:N/C:P/I:P/A:P

6 Medium

AI Score

Confidence

High

0.003 Low

EPSS

Percentile

71.8%

Related for CVE-2003-1146