5.8 Medium
AI Score
Confidence
High
0.001 Low
EPSS
Percentile
46.9%
Multiple cross-site scripting (XSS) vulnerabilities in main.php in phpAlbum 0.4.1.16 and earlier allow remote attackers to inject arbitrary web script or HTML via the (1) var1 and (2) keyword parameters.
www.exploit-db.com/exploits/18045