3 matches found
CVE-2007-1125
Cross-site scripting XSS vulnerability in gallery.php in XeroXer Simple one-file gallery allows remote attackers to inject arbitrary web script or HTML via the f parameter...
CVE-2007-1125
CVE-2007-1125 describes a cross-site scripting (XSS) vulnerability in gallery.php of XeroXer Simple one-file gallery, exploitable via the f parameter to inject arbitrary script/HTML. Connected sources confirm the issue and its basic impact (client-side script injection) but do not provide explici...
Simple one-file Gallery - gallery.php?f Traversal Arbitrary File Access
Simple one-file Gallery - gallery.php?f Traversal Arbitrary File Access source: https://www.securityfocus.com/bid/22700/info Simple one-file gallery is prone to multiple input-validation vulnerabilities, including a local file-include issue and a cross-site scripting issue. An attacker can exploi...