CVE Search Engine - Security Vulnerabilities and Exploits Search Tool

Cross-site scripting XSS vulnerability in php/editphotos.php in Zoph aka Zoph Organizes Photos 0.9.1 and earlier allows remote attackers to inject arbitrary web script or HTML via the 1 photographerid or 2 crumb parameter...

4.3CVSS5.8AI score0.02645EPSS

Exploits1References1

RedhatCVE•added 2025/05/21 6:33 p.m.•9 views

CVE-2009-2343

Cross-site scripting XSS vulnerability in people.php in Zoph before 0.7.0.6 allows remote attackers to inject arbitrary web script or HTML via unspecified vectors. NOTE: some of these details are obtained from third party information...

4.3CVSS5.8AI score0.01089EPSS

Exploits0References1

OSV•added 2009/06/27 6:47 p.m.•4 views

CVE-2008-6838

Cross-site scripting XSS vulnerability in search.php in Zoph 0.7.2.1 allows remote attackers to inject arbitrary web script or HTML via the off parameter. NOTE: the provenance of this information is unknown; the details are obtained solely from third party information...

5.7AI score

Exploits0References3