Cross-site scripting (XSS) vulnerability in search.php of Gallery 1.1 through 1.3.4 allows remote attackers to insert arbitrary web script via the searchstring parameter.
Name | Vendor | Start Version | End Version |
---|---|---|---|
Gallery | Gallery_project | 1.2.1_p1 | 1.2.1_p1 |
Gallery | Gallery_project | 1.3.1 | 1.3.1 |
Gallery | Gallery_project | 1.2.5 | 1.2.5 |
Gallery | Gallery_project | 1.3.2 | 1.3.2 |
Gallery | Gallery_project | 1.2.2 | 1.2.2 |
Gallery | Gallery_project | 1.2.4 | 1.2.4 |
Gallery | Gallery_project | 1.1 | 1.1 |
Gallery | Gallery_project | 1.2.1 | 1.2.1 |
Gallery | Gallery_project | 1.3 | 1.3 |
Gallery | Gallery_project | 1.2 | 1.2 |
Gallery | Gallery_project | 1.3.3 | 1.3.3 |
Gallery | Gallery_project | 1.2.3 | 1.2.3 |
Gallery | Gallery_project | 1.3.4 | 1.3.4 |