Vulnerability in Absolute Image Gallery

Discussion in 'TechTalk' started by Prakash, Dec 14, 2006.

  1. Prakash

    Prakash Perch

    I found a recent exploit. Absolute Image Gallery XE version 2.0 is vulnerable to cross-site scripting, caused by improper validation of user-supplied input by the gallery.asp script. A remote attacker could exploit this vulnerability using the shownew parameter to execute script in a victim's Web browser.

    http://xforce.iss.net/xforce/xfdb/25466

    Please contact your code developer to update it.

Share This Page

JodoHost - 26,000 hosting end-users in 100 countries
Plesk Web Hosting
VPS Hosting
H-Sphere Web Hosting
Other Services