Vulnerabilities > Gallerycms Project

DATE CVE VULNERABILITY TITLE RISK
2022-04-25 CVE-2022-27428 Cross-site Scripting vulnerability in Gallerycms Project Gallerycms 2.0
A stored cross-site scripting (XSS) vulnerability in /index.php/album/add of GalleryCMS v2.0 allows attackers to execute arbitrary web scripts or HTML via a crafted payload injected into the album_name parameter.
network
low complexity
gallerycms-project CWE-79
5.4