Cross-site scripting (XSS) vulnerability in Absolute Image Gallery XE 2.0 and earlier allows remote attackers to inject arbitrary web script or HTML via (1) the shownew parameter in gallery.asp and (2) unspecified search module parameters.
References
History
No history.
MITRE Information
Status: PUBLISHED
Assigner: mitre
Published: 2006-03-28T11:00:00
Updated: 2017-07-19T15:57:01
Reserved: 2006-03-28T00:00:00
Link: CVE-2006-1411
JSON object: View
NVD Information
Status : Modified
Published: 2006-03-28T11:06:00.000
Modified: 2017-07-20T01:30:34.490
Link: CVE-2006-1411
JSON object: View
Redhat Information
No data.
CWE