CVE

Id
28649  
CVE No.
CVE-2007-5292  
Status
Candidate  
Description
Cross-site scripting (XSS) vulnerability in photos.cfm in Directory Image Gallery 1.1 allows remote attackers to inject arbitrary web script or HTML via the backwardDirectory parameter.  
Phase
Assigned (20071009)  
Votes
None (candidate not yet proposed)  
Comments
 

Actions

Related CVE References

Id CVE Id CVE No. Reference Actions
298529 28649 CVE-2007-5292 MISC:http://pridels-team.blogspot.com/2007/10/directory-image-gallery-xss-vuln.html  View
298530 28649 CVE-2007-5292 VUPEN:ADV-2007-3425  View
298531 28649 CVE-2007-5292 URL:http://www.vupen.com/english/advisories/2007/3425  View
298532 28649 CVE-2007-5292 OSVDB:38629  View
298533 28649 CVE-2007-5292 URL:http://osvdb.org/38629  View
298534 28649 CVE-2007-5292 XF:directoryimage-photos-xss(36986)  View

Related JVN

Id JVN No. Title Summary CVE No. CVE Id CVSS_v2 CVSS_v3 JVN URL Actions
55793 JVNDB-2007-004485 IDMOS の core/aural.php における PHP リモートファイルインクルージョンの脆弱性 IDMOS の core/aural.php には、PHP リモートファイルインクルージョンの脆弱性が存在します。 CVE-2007-5294 28649 6.8 http://jvndb.jvn.jp/ja/contents/2007/JVNDB-2007-004485.html  View