I-Gallery 'd' Parameter Cross Site Scripting Vulnerability Network Vulnerability

Summary

i-Gallery is prone to a cross-site scripting vulnerability because it fails to properly sanitize user-supplied input. An attacker could leverage this issue to execute arbitrary script code in the browser of an unsuspecting user in the context of the affected site. This could allow the attacker to steal cookie-based authentication credentials and launch other attacks. i-Gallery 3.4 is vulnerable other versions may also be affected.

References

http://www.securityfocus.com/bid/49712

Updated on 2017-03-28

Severity

Classification

CVSS	Base Score: 4.3 AV:N/AC:M/Au:N/C:N/I:P/A:N

Related Vulnerabilities

Apache Tomcat Login Constraints Security Bypass Vulnerability
AMSI 'file' Parameter Directory Traversal Vulnerability
Apache ActiveMQ Persistent Cross-Site Scripting Vulnerability
Advanced Image Hosting Cross Site Scripting Vulnerability
@Mail 'MailType' Parameter Cross Site Scripting Vulnerability

i-Gallery 'd' Parameter Cross Site Scripting Vulnerability

Take action and discover your vulnerabilities