CVE

Id
10298  
CVE No.
CVE-2004-1871  
Status
Candidate  
Description
Multiple cross-site scripting (XSS) vulnerabilities in PhotoPost PHP Pro 4.6.x and earlier allow remote attackers to inject arbitrary web script or HTML via the (1) ppuser, (2) password, (3) stype, (4) perpage, (5) sort, (6) page, (7) si, or (8) cat parameters to showmembers.php, or the (9) photo name, (10) photo description, (11) album name, or (12) album description fields.  
Phase
Assigned (20050504)  
Votes
None (candidate not yet proposed)  
Comments
 

Actions

Related CVE References

Id CVE Id CVE No. Reference Actions
71046 10298 CVE-2004-1871 BUGTRAQ:20040328 PhotoPost PHP Pro Multiple Vulnerabilities  View
71047 10298 CVE-2004-1871 URL:http://marc.info/?l=bugtraq&m=108057790723123&w=2  View
71048 10298 CVE-2004-1871 MISC:http://www.gulftech.org/03282004.php  View
71049 10298 CVE-2004-1871 BID:9994  View
71050 10298 CVE-2004-1871 URL:http://www.securityfocus.com/bid/9994  View
71051 10298 CVE-2004-1871 SECTRACK:1009571  View
71052 10298 CVE-2004-1871 URL:http://securitytracker.com/id?1009571  View
71053 10298 CVE-2004-1871 SECUNIA:11241  View
71054 10298 CVE-2004-1871 URL:http://secunia.com/advisories/11241  View
71055 10298 CVE-2004-1871 XF:photopost-php-xss(15643)  View

Related JVN