JGS-Gallery Module Multiple Cross-Site Scripting Vulnerabilities

JGS-Gallery Module Multiple Cross-Site Scripting Vulnerabilities

These issues can be exploited using a web client.

The following proof of concept URI are available:
http://www.example.com/jgs_galerie_slideshow.php?sid=&katid=&userid=[XSS]
http://www.example.com/jgs_galerie_scroll.php?userid=[XSS]
http://www.example.com/jgs_galerie_slideshow.php?sid=&katid=[XSS]&userid=