2 matches found
CVE-2008-1698
Cross-site scripting XSS vulnerability in gallery.php in Simple Gallery 2.2 allows remote attackers to inject arbitrary web script or HTML via the album parameter to index.php. NOTE: the provenance of this information is unknown; the details are obtained solely from third party information...
CVE-2008-1698
CVE-2008-1698 is an XSS vulnerability in Simple Gallery 2.2, exploitable via the album parameter to index.php in gallery.php. The occurrence is described as a remote script/HTML injection. The NVD entry lists a MEDIUM risk (CVSS v2 base score 4.3) with network access and no authentication require...