1 matches found
CVE-2009-3911
TFTgallery 0.13 is vulnerable to a cross-site scripting (XSS) flaw in settings.php via the sample parameter, allowing remote injection of script/HTML. OpenVAS notes TFTgallery