2 matches found
CVE-2007-5776
The CVE-2007-5776 issue affects Blue-Collar Productions i-Gallery 3.4, where a directory traversal flaw in igallery.asp allows remote attackers to read arbitrary files by supplying encoded backslash sequences via the d parameter (example: %5c../../%5c). Multiple sources (NVD, CVE listings) confir...
I-Gallery - Folder Argument Cross-Site Scripting
I-Gallery - Folder Argument Cross-Site Scripting source: https://www.securityfocus.com/bid/14002/info i-Gallery is prone to a cross-site scripting vulnerability. This issue is due to a failure in the application to properly sanitize user-supplied input to the 'folder' parameter of 'folderview.asp...