7 matches found
EUVD-2005-0223
Malware in sbrugna...
CVE-2005-0222
main.php in Gallery 2.0 Alpha allows remote attackers to gain sensitive information by changing the value of g2subView parameter, which reveals the path in an error message...
CVE-2005-0222
The CVE-2005-0222 entry concerns Gallery 2.0 Alpha where main.php exposes sensitive path information via the g2_subView parameter, enabling remote information disclosure. The underlying issue is a lack of proper validation/error handling that reveals the file path in an error message when g2_subV...
CVE-2005-0221
Affected software: Gallery 2.0 Alpha (Gallery login.php). Vulnerability: Cross-site scripting (XSS) via g2_form[subject]. Root cause: user-supplied input in login form is not properly sanitized, allowing injection of arbitrary HTML/script. Impact: remote attacker could exploit to run script in a ...
CVE-2005-0221
Cross-site scripting XSS vulnerability in login.php in Gallery 2.0 Alpha allows remote attackers to inject arbitrary web script or HTML via the g2formsubject field...
CVE-2005-0222
main.php in Gallery 2.0 Alpha allows remote attackers to gain sensitive information by changing the value of g2subView parameter, which reveals the path in an error message...
CVE-2005-0221
Cross-site scripting XSS vulnerability in login.php in Gallery 2.0 Alpha allows remote attackers to inject arbitrary web script or HTML via the g2formsubject field...