Vulnerabilities > Yapig > Yapig > 0.95b
DATE | CVE | VULNERABILITY TITLE | RISK |
---|---|---|---|
2006-08-29 | CVE-2006-4421 | Cross-Site Scripting vulnerability in Yapig 0.95B Cross-site scripting (XSS) vulnerability in template/default/thanks_comment.php in Yet Another PHP Image Gallery (YaPIG) 0.95b allows remote attackers to inject arbitrary web script or HTML via the D_REFRESH_URL parameter. network yapig | 4.3 |
2005-08-30 | CVE-2005-2736 | Unspecified vulnerability in Yapig Cross-site scripting (XSS) vulnerability in YaPig 0.95 and earlier allows remote attackers to inject arbitrary web script or HTML via EXIF data, such as the Camera Model Tag. network yapig | 4.3 |