Vulnerabilities > Enhanced Simple PHP Gallery
DATE | CVE | VULNERABILITY TITLE | RISK |
---|---|---|---|
2006-01-07 | CVE-2006-0113 | Remote Security vulnerability in Enhanced Simple PHP Gallery Enhanced Simple PHP Gallery 1.7 Enhanced Simple PHP Gallery 1.7 allows remote attackers to obtain the full path of the application via a direct request to sp_helper_functions.php, which leaks the pathname in an error message. | 5.0 |
2006-01-07 | CVE-2006-0112 | Cross-Site Scripting vulnerability in Enhanced Simple PHP Gallery Enhanced Simple PHP Gallery 1.7 Cross-site scripting (XSS) vulnerability in index.php in Enhanced Simple PHP Gallery 1.7 allows remote attackers to inject arbitrary web script or HTML via the dir parameter. network enhanced-simple-php-gallery | 4.3 |