CVE-2006-1411 Information
Feb 14, 2021
cve
Description
Cross-site scripting (XSS) vulnerability in Absolute Image Gallery XE 2.0 and earlier allows remote attackers to inject arbitrary web script or HTML via (1) the shownew parameter in gallery.asp and (2) unspecified search module parameters.
Reference
http://pridels0.blogspot.com/2006/03/absolute-image-gallery-xe-20-xss-vuln.html http://www.osvdb.org/24214 http://www.securityfocus.com/bid/18712 http://www.vupen.com/english/advisories/2006/1103 https://exchange.xforce.ibmcloud.com/vulnerabilities/25466
Share on: