Cross site scripting

Multiple cross-site scripting XSS vulnerabilities in photoadd-c.php aka the "add comment" section in WEBalbum 2.0 and earlier allow remote attackers to inject arbitrary web script or HTML via the 1 comment, 2 id, or 3 category parameter...

CVE-2008-2698

Multiple cross-site scripting XSS vulnerabilities in photoadd-c.php aka the "add comment" section in WEBalbum 2.0 and earlier allow remote attackers to inject arbitrary web script or HTML via the 1 comment, 2 id, or 3 category parameter...