Gallery@1.4.4 pl2 Security Vulnerabilities and Issues — Gallery@1.4.4 pl2 CVE List

Lucene search

Gallery ProjectGallery1.4.4 pl2

6 matches found

CVE•added 2006/01/21 12:3 a.m.•55 views

CVE-2006-0330

Cross-site scripting (XSS) vulnerability in Gallery before 1.5.2 allows remote attackers to inject arbitrary web script or HTML via unknown attack vectors, possibly involving the user name (fullname).

4.3CVSS5.6AI score0.01345EPSS

CVE•added 2005/05/02 4:0 a.m.•49 views

CVE-2005-0220

Cross-site scripting vulnerability in login.php in Gallery 1.4.4-pl2 allows remote attackers to inject arbitrary web script or HTML via the username field.

5CVSS5.9AI score0.00572EPSS

CVE•added 2005/08/30 11:45 a.m.•46 views

CVE-2005-2734

Cross-site scripting (XSS) vulnerability in Gallery 1.5.1-RC2 and earlier allows remote attackers to inject arbitrary web script or HTML via EXIF data, such as the Camera Model Tag.

4.3CVSS5.6AI score0.00804EPSS

CVE•added 2006/02/08 1:2 a.m.•43 views

CVE-2006-0587

Unspecified vulnerability in util.php in Gallery before 1.5.2-pl2 allows remote authenticated users with trick an owner into modifying stored album data and possibly executing arbitrary code via unspecified vectors involving a crafted link to a crafted file.

6.5CVSS6.6AI score0.02212EPSS

CVE•added 2006/08/16 10:4 p.m.•38 views

CVE-2006-4030

Unspecified vulnerability in the stats module in Gallery 1.5.1-RC2 and earlier allows remote attackers to obtain sensitive information via unspecified attack vectors, related to "two file exposure bugs."

5CVSS6.1AI score0.00622EPSS

CVE•added 2006/04/11 10:2 a.m.•25 views

CVE-2006-1696

Cross-site scripting (XSS) vulnerability in Gallery before 1.5.3 allows remote attackers to inject arbitrary web script or HTML via unknown attack vectors.

4.3CVSS5.7AI score0.00527EPSS