EUVD-2006-3033

Malware in sbrugna...

Andy Mack 35mm Slide Gallery 6.0 index.php imgdir Parameter XSS

No description provided by source. source: http://www.securityfocus.com/bid/18414/info 35mmslidegallery is prone to multiple cross-site scripting vulnerabilities because it fails to properly sanitize user-supplied input. An attacker may leverage these issues to have arbitrary script code execute ...

Andy Mack 35mm Slide Gallery 6.0 popup.php Multiple Parameter XSS

No description provided by source. source: http://www.securityfocus.com/bid/18414/info 35mmslidegallery is prone to multiple cross-site scripting vulnerabilities because it fails to properly sanitize user-supplied input. An attacker may leverage these issues to have arbitrary script code execute ...

CVE-2006-3036

Multiple cross-site scripting XSS vulnerabilities in 35mmslidegallery 6.0 allow remote attackers to inject arbitrary web script or HTML via the 1 imgdir parameter in a index.php, and the 2 w, 3 h, and 4 t parameters in b popup.php...

CVE-2006-3036

The CVE-2006-3036 entry concerns multiple XSS flaws in 35mmslidegallery 6.0. The vulnerabilities affect the web interface where user-supplied data can be injected via the (1) imgdir parameter in index.php and (2) the w, h, and t parameters in popup.php. The underlying issue is insufficient input ...

multiple Xss exploits in 35mmslidegallery V6

multiple Xss exploits in 35mmslidegallery V6 forum type : 35mmslidegallery V6 bug found by : black-code team : $!T3-D0WN type : Xss exploits : http://example.com/lumet/album/index.php?imgdir='scriptalert10/script http://example.comr/lumet/album/popup.php?w='scriptalert10/script...

35mmslidegallery.txt

multiple Xss exploits in 35mmslidegallery V6 forum type : 35mmslidegallery V6 bug found by : black-code team : $!T3-D0WN type : Xss exploits : http://example.com/lumet/album/index.php?imgdir='alert10 http://example.comr/lumet/album/popup.php?w='alert10...

Andy Mack 35mm Slide Gallery 6.0 - 'popup.php' Multiple Cross-Site Scripting Vulnerabilities

source: https://www.securityfocus.com/bid/18414/info 35mmslidegallery is prone to multiple cross-site scripting vulnerabilities because it fails to properly sanitize user-supplied input. An attacker may leverage these issues to have arbitrary script code execute in the browser of an unsuspecting...

Andy Mack 35mm Slide Gallery 6.0 - index.php?imgdir Cross-Site Scripting

Andy Mack 35mm Slide Gallery 6.0 - index.php?imgdir Cross-Site Scripting source: https://www.securityfocus.com/bid/18414/info 35mmslidegallery is prone to multiple cross-site scripting vulnerabilities because it fails to properly sanitize user-supplied input. An attacker may leverage these issues...

Andy Mack 35mm Slide Gallery 6.0 - 'index.php?imgdir' Cross-Site Scripting

source: https://www.securityfocus.com/bid/18414/info 35mmslidegallery is prone to multiple cross-site scripting vulnerabilities because it fails to properly sanitize user-supplied input. An attacker may leverage these issues to have arbitrary script code execute in the browser of an unsuspecting...