BugTraq
Gallery v1.3.3 Cross Site Scripting Vulnerabillity Dec 30 2003 01:29PM
The-Insider (nuritrv18 bezeqint net) (2 replies)
Re: Gallery v1.3.3 Cross Site Scripting Vulnerabillity Jan 01 2004 05:42AM
Matt Zimmerman (mdz debian org)
On Tue, Dec 30, 2003 at 03:29:49PM +0200, The-Insider wrote:

> #######################################################################
>
> Application: Gallery
> Vendors:
> http://gallery.sourceforge.net
> http://gallery.menalto.com
> Versions: <= 1.3.3
> Platforms: Windows/Unix
> Bug: Cross Site Scripting Vulnerabillity
> Risk: Low
> Exploitation: Remote with browser
> Date: 30 Dec 2003
> Author: Rafel Ivgi, The-Insider
> e-mail: the_insider (at) mail (dot) com [email concealed]
> web: http://theinsider.deep-ice.com
>
> #######################################################################

Also known as CAN-2003-0614 from July, fixed in DSA-355.

--
- mdz

[ reply ]
Re: Gallery v1.3.3 Cross Site Scripting Vulnerabillity Dec 30 2003 07:55PM
Bharat Mediratta (bharat menalto com)


 

Privacy Statement
Copyright 2010, SecurityFocus