Weekly edition	Kernel	Security	Distributions	Search
Archives	Calendar	Subscribe	Write for LWN	LWN.net FAQ

gallery: cross-site scripting

Package(s):

gallery

CVE #(s):

CAN-2003-0614

Created:

July 31, 2003

Updated:

September 2, 2003

Description:

Larry Nguyen discovered a cross site scripting vulnerability in gallery, a web-based photo album written in php. This security flaw can allow a malicious user to craft a URL that executes Javascript code on your website.

Alerts:

Gentoo	200309-06	2003-09-02
Debian	DSA-355-1	2003-07-30

(Log in to post comments)