Cross-site scripting (XSS) vulnerability in comments.php in PhpWebGallery 1.5.2 and previous versions, and possibly 1.6.0, allows remote malicious users to inject arbitrary web script or HTML via the keyword parameter.
Vulnerable Product | Search on Vulmon | Subscribe to Product |
---|---|---|
phpwebgallery phpwebgallery 1.4.1 |
||
phpwebgallery phpwebgallery 1.5.1 |
||
phpwebgallery phpwebgallery 1.5.2 |
||
phpwebgallery phpwebgallery 1.6 |
||
phpwebgallery phpwebgallery 1.0 |
||
phpwebgallery phpwebgallery 1.1 |