2 matches found
CVE-2006-2028
The CVE-2006-2028 entry concerns a Cross-site Scripting (XSS) vulnerability in imagelist.php of Jeremy Ashcraft Simpleg 0.9.3 and earlier. The issue allows remote attackers to inject arbitrary script/HTML via the imagedir parameter, with note that it may stem from directory traversal. Affected so...
CVE-2006-2028
Cross-site scripting XSS vulnerability in imagelist.php in Jeremy Ashcraft Simplog 0.9.3 and earlier allows remote attackers to inject arbitrary web script or HTML via the imagedir parameter. NOTE: this issue might be resultant from directory traversal...