Cross-site scripting (XSS) vulnerability in index.php in TinyWebGallery 1.3 and 1.4 allows remote malicious users to inject arbitrary web script or HTML via the twg_album parameter.
Vulnerable Product | Search on Vulmon | Subscribe to Product |
---|---|---|
tinywebgallery tinywebgallery 1.3 |
||
tinywebgallery tinywebgallery 1.4 |