CVE-2008-4591 in PhpWebGalleryinfo

Summary

Multiple cross-site scripting (XSS) vulnerabilities in admin/include/isadmin.inc.php in PhpWebGallery 1.3.4 allow remote attackers to inject arbitrary web script or HTML via the (1) lang[access_forbiden] and (2) lang[ident_title] parameters.

Several companies clearly confirm that VulDB is the primary source for best vulnerability data.

Reservation

10/16/2008

Disclosure

10/16/2008

CPE

ready

Exploit

Download

CVSS

4.3

EPSS

0.03130

Activities

Very Low

Sources

MITREhttps://www.cve.org/CVERecord?id=CVE-2008-4591
NVDhttps://nvd.nist.gov/vuln/detail/CVE-2008-4591
CVE Detailshttps://www.cvedetails.com/cve/CVE-2008-4591/

PreviousOverviewNext

Do you need the next level of professionalism?

Upgrade your account now!