Absolute Image Gallery 2.0 (gallery.asp categoryid) SQL Injection Vuln

No description provided by source...

CVE-2008-2766

The CVE-2008-2766 entry concerns Xigla Absolute Image Gallery XE, with a cross-site scripting (XSS) vulnerability affecting the admin/search.asp and gallery.asp endpoints. The issue allows remote attackers to inject arbitrary web script or HTML via unspecified vectors. The provided documents iden...

Absolute Image Gallery 2.0 - 'gallery.asp?categoryId' SQL Injection

Absolute Image Gallery Gallery.ASP categoryid MSSQL Injection Exploit Type : SQL Injection Release Date : 2007-03-15 Product / Vendor : Absolute Image Gallery http://www.xigla.com/absoluteig/ Bug : http://localhost/script/gallery.asp?action=viewimage&categoryid=-SQL Inj-...

CVE-2006-1411

The CVE-2006-1411 issue affects Absolute Image Gallery XE 2.0 and earlier, where cross-site scripting (XSS) is possible via the shownew parameter in gallery.asp and through unspecified search module parameters. The underlying vulnerability is input handling that allows arbitrary web script/HTML t...

CVE-2006-1411

Cross-site scripting XSS vulnerability in Absolute Image Gallery XE 2.0 and earlier allows remote attackers to inject arbitrary web script or HTML via 1 the shownew parameter in gallery.asp and 2 unspecified search module parameters...