Lucene search
K

10 matches found

EUVD
EUVD
added 2025/10/07 12:30 a.m.5 views

EUVD-2009-3804

Malware in sbrugna...

4.3CVSS6.4AI score0.01269EPSS
Exploits1References3
RedhatCVE
RedhatCVE
added 2025/05/21 9:58 p.m.10 views

CVE-2009-3833

Cross-site scripting XSS vulnerability in index.php in TFTgallery 0.13 allows remote attackers to inject arbitrary web script or HTML via the album parameter...

4.3CVSS5.9AI score0.01269EPSS
Exploits1References1
Prion
Prion
added 2009/11/09 5:30 p.m.18 views

Directory traversal

Directory traversal vulnerability in index.php in TFTgallery 0.13 allows remote attackers to read arbitrary files via a ..%2F encoded dot dot slash in the album parameter...

5CVSS7.1AI score0.02744EPSS
Exploits1References3Affected Software1
Cvelist
Cvelist
added 2009/11/09 5:0 p.m.24 views

CVE-2009-3911

Cross-site scripting XSS vulnerability in settings.php in TFTgallery 0.13 allows remote attackers to inject arbitrary web script or HTML via the sample parameter...

5.7AI score0.01484EPSS
Exploits1References4
CVE
CVE
added 2009/11/09 5:0 p.m.55 views

CVE-2009-3911

TFTgallery 0.13 is vulnerable to a cross-site scripting (XSS) flaw in settings.php via the sample parameter, allowing remote injection of script/HTML. OpenVAS notes TFTgallery

4.3CVSS5.7AI score0.01484EPSS
Exploits1References4Affected Software1
Cvelist
Cvelist
added 2009/11/09 5:0 p.m.31 views

CVE-2009-3912

Directory traversal vulnerability in index.php in TFTgallery 0.13 allows remote attackers to read arbitrary files via a ..%2F encoded dot dot slash in the album parameter...

6.6AI score0.02744EPSS
Exploits1References3
Prion
Prion
added 2009/11/02 3:30 p.m.14 views

Cross site scripting

Cross-site scripting XSS vulnerability in index.php in TFTgallery 0.13 allows remote attackers to inject arbitrary web script or HTML via the album parameter...

4.3CVSS6.1AI score0.01269EPSS
Exploits1References2Affected Software1
Cvelist
Cvelist
added 2009/11/02 3:0 p.m.21 views

CVE-2009-3833

Cross-site scripting XSS vulnerability in index.php in TFTgallery 0.13 allows remote attackers to inject arbitrary web script or HTML via the album parameter...

5.7AI score0.01269EPSS
Exploits1References2
OpenVAS
OpenVAS
added 2009/10/29 12:0 a.m.16 views

TFTgallery <= 0.13 'album' Parameter XSS Vulnerability

TFTgallery is prone to a cross-site scripting XSS vulnerability because the application fails to sufficiently sanitize user-supplied input. SPDX-FileCopyrightText: 2009 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right...

4.3CVSS6.3AI score0.01269EPSS
Exploits1References1
Packet Storm
Packet Storm
added 2009/10/26 12:0 a.m.19 views

TFTgallery 0.13 Cross Site Scripting

TFTgallery 0.13 is vulnerable to XSS Discovered by Blake http://example.com/tftgallery/index.php?page=1&album= document.writedocument.cookie...

0.4AI score
Exploits0
Rows per page
Query Builder