Vulnerabilities > Fipsasp > Fipsgallery

DATE CVE VULNERABILITY TITLE RISK
2006-11-26 CVE-2006-6117 SQL Injection vulnerability in FipsGallery Index1.ASP
SQL injection vulnerability in index1.asp in fipsGallery 1.5 and earlier allows remote attackers to execute arbitrary SQL commands via the which parameter.
network
low complexity
fipsasp
7.5
7.5
2006-06-15 CVE-2006-3022 Cross-Site Scripting vulnerability in fipsGallery
Cross-site scripting (XSS) vulnerability in zoom.php in fipsGallery 1.5 and earlier allows remote attackers to inject arbitrary web script or HTML via the path parameter.
network
fipsasp
6.8
6.8