3 matches found
CVE-2006-1659
Softbiz Image Gallery contains multiple SQL injection vulnerabilities affecting PHP scripts: image_desc.php (id), template.php (unspecified parameter), suggest_image.php (cid), insert_rating.php (img_id), and images.php (cid). The root cause is improper input handling in these endpoints, allowing...
CVE-2006-1660
CVE-2006-1660 describes a Cross‑site Scripting (XSS) vulnerability in Softbiz Image Gallery (Photo Gallery), specifically in image_desc.php where an attacker can inject arbitrary script/HTML via the msg parameter. The vulnerability is documented with an external reference note and is corroborated...
CVE-2008-3511
CVE-2008-3511 affects Softbiz Image Gallery (Photo Gallery). It describes multiple cross-site scripting (XSS) vulnerabilities that permit remote attackers to inject arbitrary script or HTML via the latest parameter to index.php, images.php, suggest_image.php, and image_desc.php; and via the msg p...