CVE-2006-1972 | Vulnerability Database | Aqua Security

NVD

https://nvd.nist.gov/vuln/detail/CVE-2006-1972

CWE

https://cwe.mitre.org/data/definitions/NVD-Other.html

Cross-site scripting (XSS) vulnerability in EasyGallery.php in Wingnut EasyGallery allows remote attackers to inject arbitrary web script or HTML via the ordner parameter.

Affected Software

Name	Vendor	Start Version	End Version
Easygallery	Wingnut	*	*

References

http://advisory.patriotichackers.com/index.php?itemid=5
http://secunia.com/advisories/19713
http://securityreason.com/securityalert/746
http://www.securityfocus.com/archive/1/431430/100/0/threaded
http://www.securityfocus.com/bid/17624
http://www.vupen.com/english/advisories/2006/1437
https://exchange.xforce.ibmcloud.com/vulnerabilities/25943