321soft

Php-gallery

2 vulnerabilities found.

Hinweis: Diese Liste kann unvollständig sein. Daten werden ohne Gewähr im Ursprungsformat bereitgestellt.
5.8

CVE-2006-2210

Exploit
  • EPSS 0.67%
  • Published 05.05.2006 12:46:00
  • Last modified 03.04.2025 01:03:51

Cross-site scripting (XSS) vulnerability in index.php in 321soft PhP-Gallery 0.9 allows remote attackers to inject arbitrary web script or HTML via the path parameter. NOTE: this issue might be resultant from the directory traversal vulnerability.

5

CVE-2006-2211

Exploit
  • EPSS 5.02%
  • Published 05.05.2006 12:46:00
  • Last modified 03.04.2025 01:03:51

Absolute path traversal vulnerability in index.php in 321soft PhP-Gallery 0.9 allows remote attackers to browse arbitrary directories via the path parameter.