10 matches found
EUVD-2009-3804
Malware in sbrugna...
CVE-2009-3833
Cross-site scripting XSS vulnerability in index.php in TFTgallery 0.13 allows remote attackers to inject arbitrary web script or HTML via the album parameter...
Directory traversal
Directory traversal vulnerability in index.php in TFTgallery 0.13 allows remote attackers to read arbitrary files via a ..%2F encoded dot dot slash in the album parameter...
CVE-2009-3911
Cross-site scripting XSS vulnerability in settings.php in TFTgallery 0.13 allows remote attackers to inject arbitrary web script or HTML via the sample parameter...
CVE-2009-3911
TFTgallery 0.13 is vulnerable to a cross-site scripting (XSS) flaw in settings.php via the sample parameter, allowing remote injection of script/HTML. OpenVAS notes TFTgallery
CVE-2009-3912
Directory traversal vulnerability in index.php in TFTgallery 0.13 allows remote attackers to read arbitrary files via a ..%2F encoded dot dot slash in the album parameter...
Cross site scripting
Cross-site scripting XSS vulnerability in index.php in TFTgallery 0.13 allows remote attackers to inject arbitrary web script or HTML via the album parameter...
CVE-2009-3833
Cross-site scripting XSS vulnerability in index.php in TFTgallery 0.13 allows remote attackers to inject arbitrary web script or HTML via the album parameter...
TFTgallery <= 0.13 'album' Parameter XSS Vulnerability
TFTgallery is prone to a cross-site scripting XSS vulnerability because the application fails to sufficiently sanitize user-supplied input. SPDX-FileCopyrightText: 2009 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right...
TFTgallery 0.13 Cross Site Scripting
TFTgallery 0.13 is vulnerable to XSS Discovered by Blake http://example.com/tftgallery/index.php?page=1&album= document.writedocument.cookie...