CVE-2011-4806 Information

Feb 14, 2021 cve

Description

Multiple cross-site scripting (XSS) vulnerabilities in main.php in phpAlbum 0.4.1.16 and earlier allow remote attackers to inject arbitrary web script or HTML via the (1) var1 and (2) keyword parameters.

Reference

http://www.exploit-db.com/exploits/18045

Share on: