CVE-2006-0112

2006-01-0701:00:00

mitre

www.cve.org

5.8 Medium

AI Score

Confidence

High

0.003 Low

EPSS

Percentile

69.0%

JSON

Cross-site scripting (XSS) vulnerability in index.php in Enhanced Simple PHP Gallery 1.7 allows remote attackers to inject arbitrary web script or HTML via the dir parameter.

References

osvdb.org/ref/22/22201-espg.txt

secunia.com/advisories/18310

www.osvdb.org/22201

www.vupen.com/english/advisories/2006/0036