RSS   Vulnerabilities for 'Php-gallery'   RSS

2006-05-05
 
CVE-2006-2211

CWE-Other
 

 
Absolute path traversal vulnerability in index.php in 321soft PhP-Gallery 0.9 allows remote attackers to browse arbitrary directories via the path parameter.

 
 
CVE-2006-2210

CWE-Other
 

 
Cross-site scripting (XSS) vulnerability in index.php in 321soft PhP-Gallery 0.9 allows remote attackers to inject arbitrary web script or HTML via the path parameter. NOTE: this issue might be resultant from the directory traversal vulnerability.

 


Copyright 2024, cxsecurity.com

 

Back to Top