8 matches found
i-Gallery 3.4 Cross Site Scripting
=========================================================== i-Gallery 3.4 asp Cross-site scripting Vulnerability ----------------------------------------------------------- foun by :kurd-team group : kurdish hackers team contact : [email protected] site : kurdteam.org...
Unfixed XSS vulnerability at sampsoncenterstage.wordwrightserver.com
Security researcher Narcoticxs, has submitted on 11/09/2007 a cross-site-scripting XSS vulnerability affecting sampsoncenterstage.wordwrightserver.com, which at the time of submission ranked 0 on the web according to Alexa. We manually validated and published a mirror of this vulnerability on...
Directory traversal
Directory traversal vulnerability in igallery.asp in Blue-Collar Productions i-Gallery 3.4 allows remote attackers to read arbitrary files via encoded backslash sequences in the d parameter, as demonstrated by a "%5c../../%5c" sequence...
Unfixed XSS vulnerability at www.hapimagtesisleri.com
Security researcher Narcoticxs, has submitted on 09/09/2007 a cross-site-scripting XSS vulnerability affecting www.hapimagtesisleri.com, which at the time of submission ranked 0 on the web according to Alexa. We manually validated and published a mirror of this vulnerability on 12/09/2007. It is...
CVE-2006-6088
Multiple cross-site scripting XSS vulnerabilities in BlueCollar i-Gallery 3.4 allow remote attackers to inject arbitrary web script or HTML via the 1 n or 2 d parameter in igallery.asp, or 3 an unspecified parameter related to search, possibly the Search Gallery field, or the myquery parameter, i...
CVE-2006-3021
Multiple cross-site scripting XSS vulnerabilities in BlueCollar i-Gallery 4.1 PLUS and earlier allow remote attackers to inject arbitrary web script or HTML via the 1 n and 2 d parameters in a login.asp and the d parameter in b igallery.asp...
CVE-2006-3021
CVE-2006-3021 describes multiple cross-site scripting (XSS) vulnerabilities in BlueCollar i-Gallery 4.1 PLUS and earlier. The issueable input vectors are the (1) n and (2) d parameters in login.asp and the d parameter in igallery.asp, allowing remote attackers to inject arbitrary web script or HT...
CVE-2006-3021
Multiple cross-site scripting XSS vulnerabilities in BlueCollar i-Gallery 4.1 PLUS and earlier allow remote attackers to inject arbitrary web script or HTML via the 1 n and 2 d parameters in a login.asp and the d parameter in b igallery.asp...