CVE-2007-5292

2007-10-0918:00:00

mitre

www.cve.org

AI Score

5.6

Confidence

High

EPSS

0.002

Percentile

65.4%

JSON

Cross-site scripting (XSS) vulnerability in photos.cfm in Directory Image Gallery 1.1 allows remote attackers to inject arbitrary web script or HTML via the backwardDirectory parameter.

References

osvdb.org/38629

pridels-team.blogspot.com/2007/10/directory-image-gallery-xss-vuln.html

www.vupen.com/english/advisories/2007/3425

exchange.xforce.ibmcloud.com/vulnerabilities/36986