Cross-site scripting (XSS) vulnerability in Gallery 1.5.1-RC2 and previous versions allows remote malicious users to inject arbitrary web script or HTML via EXIF data, such as the Camera Model Tag.
Vulnerable Product | Search on Vulmon | Subscribe to Product |
---|---|---|
gallery project gallery 1.4.3 pl2 |
||
gallery project gallery 1.4.4 pl2 |
||
gallery project gallery 1.4 pl1 |
||
gallery project gallery 1.4.2 |
||
gallery project gallery 1.5.1 |
||
gallery project gallery 1.5 |
||
gallery project gallery 1.4.4 pl3 |
||
gallery project gallery 1.4.1 |
||
gallery project gallery 1.5.1 rc2 |
||
gallery project gallery 1.4.3 pl1 |
||
gallery project gallery 1.4.4 pl4 |
||
gallery project gallery 1.4.4 pl5 |
||
gallery project gallery 1.4 pl2 |
||
gallery project gallery 1.4 |