Vulnerabilities > CVE-2006-1696 - Cross-Site Scripting vulnerability in Gallery

CVSS 4.3 - MEDIUM

Attack vector

NETWORK

Attack complexity

MEDIUM

Privileges required

NONE

Confidentiality impact

NONE

Integrity impact

PARTIAL

Availability impact

NONE

network

gallery-project

NVD

Published: 2006-04-11

Updated: 2017-07-20

Summary

Cross-site scripting (XSS) vulnerability in Gallery before 1.5.3 allows remote attackers to inject arbitrary web script or HTML via unknown attack vectors.

Vulnerable Configurations

Part	Description	Count
Application	Gallery_Project Gallery Project Gallery 1.3.4 Gallery Project Gallery 1.4 Gallery Project Gallery 1.4.1 Gallery Project Gallery 1.4.2 Gallery Project Gallery 1.4.3_Pl1 Gallery Project Gallery 1.4.3_Pl2 Gallery Project Gallery 1.4.4_Pl2 Gallery Project Gallery 1.4.4_Pl3 Gallery Project Gallery 1.4.4_Pl4 Gallery Project Gallery 1.4.4_Pl5 Gallery Project Gallery 1.4_Pl1 Gallery Project Gallery 1.4_Pl2 Gallery Project Gallery 1.5 Gallery Project Gallery 1.5.1 Gallery Project Gallery 1.5.1_Rc2 Gallery Project Gallery 1.5.2 Gallery Project Gallery 1.5.2_Pl1 Gallery Project Gallery 1.5.2_Pl2 Gallery Project Gallery 1.5.2_Rc2 Gallery Project Gallery 1.5.2_Rc3	20

Summary

Vulnerable Configurations

References