Vulnerabilities > Ansel
| DATE | CVE | VULNERABILITY TITLE | RISK |
|---|---|---|---|
| 2004-12-31 | CVE-2004-2267 | Input Validation vulnerability in Ansel Cross-site scripting (XSS) vulnerability in Ansel 2.1 and earlier allows remote attackers to inject arbitrary HTML or web script via the album name. network ansel | 4.3 |
| 2004-12-31 | CVE-2004-2266 | Input Validation vulnerability in Ansel SQL injection vulnerability in Ansel 2.1 and earlier allows remote attackers to modify SQL statements via the image parameter. | 7.5 |
| 2004-12-31 | CVE-2004-2203 | Unspecified vulnerability in Ansel Ansel 1.2 through 2.0 uses insecure default permissions, which allows remote attackers to gain access to web readable directories. | 7.5 |