Vulnerabilities > Phpwebgallery > Low
| DATE | CVE | VULNERABILITY TITLE | RISK |
|---|---|---|---|
| 2006-04-10 | CVE-2006-1674 | Cross-Site Scripting vulnerability in PHPwebgallery 1.4.1 Cross-site scripting (XSS) vulnerability in search.php in PHPWebGallery 1.4.1 allows remote attackers to inject arbitrary web script or HTML via the id parameter, a different vulnerability than CVE-2006-1675. | 2.6 |
| 2006-04-10 | CVE-2006-1675 | Cross-Site Scripting vulnerability in PHPwebgallery 1.4.1 Multiple cross-site scripting (XSS) vulnerabilities in PHPWebGallery 1.4.1 allow remote attackers to inject arbitrary web script or HTML via the (1) cat, (2) num, and (3) search parameters to (a) category.php, and the (4) slideshow, (5) show_metadata, and (6) start parameters to (b) picture.php, a different vulnerability than CVE-2006-1674. | 2.6 |