2 matches found
CVE-2006-4087
CVE-2006-4087 describes a cross-site scripting (XSS) vulnerability in the admin.cgi component of mojoGallery (mojoscripts.com). The issue allows remote attackers to inject arbitrary web script or HTML through the username parameter. The NVD records a CVSSv2 base score of 4.3 (medium severity), wi...
CVE-2006-4104
The CVE-2006-4104 entry describes a Cross-site Scripting (XSS) vulnerability in MojoGallery’s admin.cgi. The underlying issue is an input handling flaw in the password input field that permits injection of arbitrary web script or HTML, enabling an attacker to potentially execute scripts in the co...