2 matches found
CVE-2007-6135
Cross-site scripting XSS vulnerability in phpslideshow.php in PHPSlideShow 0.9.9.2, and possibly earlier, allows remote attackers to inject arbitrary web script or HTML via the directory parameter. NOTE: this issue was originally reported for toonchapter8.php, but this is probably a site-specific...
CVE-2007-6135
PHPSlideShow 0.9.9.2 contains a Cross-site Scripting (XSS) vulnerability in phpslideshow.php, exploitable via the directory parameter. The issue, originally noted for toonchapter8.php, allows remote attackers to inject arbitrary web script or HTML. The available data describe the vulnerable compo...