Vulnerabilities > CVE-2006-5057 - Cross-Site Scripting vulnerability in Photostore
Attack vector
NETWORK Attack complexity
HIGH Privileges required
NONE Confidentiality impact
PARTIAL Integrity impact
PARTIAL Availability impact
PARTIAL Summary
Multiple cross-site scripting (XSS) vulnerabilities in Ktools.net PhotoStore allow remote attackers to inject arbitrary web script or HTML via the (1) gid parameter in details.php, or the (2) photogid parameter in view_photog.php.
Vulnerable Configurations
Part | Description | Count |
---|---|---|
Application | 1 |
Exploit-Db
description PhotoStore details.php gid Parameter XSS. CVE-2006-5057. Webapps exploit for php platform id EDB-ID:28662 last seen 2016-02-03 modified 2006-09-25 published 2006-09-25 reporter meto5757 source https://www.exploit-db.com/download/28662/ title PhotoStore details.php gid Parameter XSS description PhotoStore view_photog.php photogid Parameter XSS. CVE-2006-5057 . Webapps exploit for php platform id EDB-ID:28663 last seen 2016-02-03 modified 2006-09-25 published 2006-09-25 reporter meto5757 source https://www.exploit-db.com/download/28663/ title PhotoStore view_photog.php photogid Parameter XSS