Cross-site scripting (XSS) vulnerability in Gallery 1.5.1-RC2 and previous versions allows remote malicious users to inject arbitrary web script or HTML via EXIF data, such as the Camera Model Tag.
Vulnerable Product | Search on Vulmon | Subscribe to Product |
---|---|---|
gallery project gallery 1.4 |
||
gallery project gallery 1.4.1 |
||
gallery project gallery 1.4.4_pl5 |
||
gallery project gallery 1.4_pl1 |
||
gallery project gallery 1.4.2 |
||
gallery project gallery 1.4.3_pl1 |
||
gallery project gallery 1.4_pl2 |
||
gallery project gallery 1.5 |
||
gallery project gallery 1.4.3_pl2 |
||
gallery project gallery 1.4.4_pl2 |
||
gallery project gallery 1.5.1 |
||
gallery project gallery 1.5.1_rc2 |
||
gallery project gallery 1.4.4_pl3 |
||
gallery project gallery 1.4.4_pl4 |