RSS   Vulnerabilities for 'Goollery'   RSS

2004-12-31
 
CVE-2004-2246

 

 
Cross-site scripting (XSS) vulnerability in Goollery before 0.04b allows remote attackers to inject arbitrary HTML or web script via the conversation_id parameter to viewpic.php.

 
 
CVE-2004-2245

 

 
Cross-site scripting (XSS) vulnerability in Goollery 0.03 allows remote attackers to inject arbitrary HTML or web script via the (1) page parameter to viewalbum.php or (2) btopage parameter to viewpic.php.

 


Copyright 2024, cxsecurity.com

 

Back to Top