Vulnerabilities > CVE-2007-2098 - Cross-Site Scripting vulnerability in Wabbit PHP Gallery 0.9

CVSS 6.8 - MEDIUM

Attack vector

NETWORK

Attack complexity

MEDIUM

Privileges required

NONE

Confidentiality impact

PARTIAL

Integrity impact

PARTIAL

Availability impact

PARTIAL

network

wabbit

exploit available

NVD

Published: 2007-04-18

Updated: 2018-10-16

Summary

Multiple cross-site scripting (XSS) vulnerabilities in showpic.php in Wabbit PHP Gallery 0.9 allow remote attackers to inject arbitrary web script or HTML via the (1) pic and (2) gal parameters.

Vulnerable Configurations

Part	Description	Count
Application	Wabbit Wabbit Wabbit PHP Gallery 0.9	1

Exploit-Db

description	Wabbit Gallery Script 0.9 Showpic.PHP Multiple Cross-Site Scripting Vulnerabilities. CVE-2007-2098. Webapps exploit for php platform
id	EDB-ID:29865
last seen	2016-02-03
modified	2007-04-17
published	2007-04-17
reporter	the_Edit0r
source	https://www.exploit-db.com/download/29865/
title	Wabbit Gallery Script 0.9 Showpic.PHP Multiple Cross-Site Scripting Vulnerabilities

Summary

Vulnerable Configurations

Exploit-Db

References