exploitDog

CVE-2008-4130

Опубликовано: 18 сент. 2008

Источник: redhat

EPSS Низкий

Описание

Cross-site scripting (XSS) vulnerability in Gallery 2.x before 2.2.6 allows remote attackers to inject arbitrary web script or HTML via a crafted Flash animation, related to the ability of the animation to "interact with the embedding page."

Ссылки на источники

Дополнительная информация

Статус:

Moderate

Дефект:

CWE-79

https://bugzilla.redhat.com/show_bug.cgi?id=462885gallery2 XSS attack

EPSS

Процентиль: 70%

0.0065

Низкий

Связанные уязвимости

CVE-2008-4130

ubuntu

почти 17 лет назад

Cross-site scripting (XSS) vulnerability in Gallery 2.x before 2.2.6 allows remote attackers to inject arbitrary web script or HTML via a crafted Flash animation, related to the ability of the animation to "interact with the embedding page."

CVE-2008-4130

nvd

почти 17 лет назад

Cross-site scripting (XSS) vulnerability in Gallery 2.x before 2.2.6 allows remote attackers to inject arbitrary web script or HTML via a crafted Flash animation, related to the ability of the animation to "interact with the embedding page."

CVE-2008-4130

debian

почти 17 лет назад

Cross-site scripting (XSS) vulnerability in Gallery 2.x before 2.2.6 a ...

GHSA-62rc-gc2g-m9pr

github

больше 3 лет назад

Cross-site scripting (XSS) vulnerability in Gallery 2.x before 2.2.6 allows remote attackers to inject arbitrary web script or HTML via a crafted Flash animation, related to the ability of the animation to "interact with the embedding page."

EPSS

Процентиль: 70%

0.0065

Низкий