Описание
Cross-site scripting (XSS) vulnerability in index.php for GOOP Gallery 2.0, and possibly other versions before 2.0.3, allows remote attackers to inject arbitrary HTML or web script via the image parameter.
Cross-site scripting (XSS) vulnerability in index.php for GOOP Gallery 2.0, and possibly other versions before 2.0.3, allows remote attackers to inject arbitrary HTML or web script via the image parameter.
Ссылки
- https://nvd.nist.gov/vuln/detail/CVE-2006-5598
- https://exchange.xforce.ibmcloud.com/vulnerabilities/29643
- http://lostmon.blogspot.com/2006/10/goop-gallery-image-param-cross-site.html
- http://securitytracker.com/id?1017081
- http://webgeneius.com/index.php?mod=blog&id=49
- http://www.securityfocus.com/bid/20554
EPSS
Процентиль: 66%
0.00521
Низкий
CVE ID
Связанные уязвимости
nvd
больше 19 лет назад
Cross-site scripting (XSS) vulnerability in index.php for GOOP Gallery 2.0, and possibly other versions before 2.0.3, allows remote attackers to inject arbitrary HTML or web script via the image parameter.
EPSS
Процентиль: 66%
0.00521
Низкий