CVEDB API

Vulnerabilities

Vulnerable Software

Vulnerability Details CVE-2006-0330

Cross-site scripting (XSS) vulnerability in Gallery before 1.5.2 allows remote attackers to inject arbitrary web script or HTML via unknown attack vectors, possibly involving the user name (fullname).

Exploit prediction scoring system (EPSS) score

EPSS Score 0.018

EPSS Ranking 75.7%

CVSS Severity

CVSS v2 Score 4.3

References

Products affected by CVE-2006-0330

Gallery Project » Gallery » Version: 1.3.4

cpe:2.3:a:gallery_project:gallery:1.3.4
Gallery Project » Gallery » Version: 1.4

cpe:2.3:a:gallery_project:gallery:1.4
Gallery Project » Gallery » Version: 1.4.1

cpe:2.3:a:gallery_project:gallery:1.4.1
Gallery Project » Gallery » Version: 1.4.2

cpe:2.3:a:gallery_project:gallery:1.4.2
Gallery Project » Gallery » Version: 1.4.3_pl1

cpe:2.3:a:gallery_project:gallery:1.4.3_pl1
Gallery Project » Gallery » Version: 1.4.3_pl2

cpe:2.3:a:gallery_project:gallery:1.4.3_pl2
Gallery Project » Gallery » Version: 1.4.4_pl2

cpe:2.3:a:gallery_project:gallery:1.4.4_pl2
Gallery Project » Gallery » Version: 1.4.4_pl3

cpe:2.3:a:gallery_project:gallery:1.4.4_pl3
Gallery Project » Gallery » Version: 1.4.4_pl4

cpe:2.3:a:gallery_project:gallery:1.4.4_pl4
Gallery Project » Gallery » Version: 1.4.4_pl5

cpe:2.3:a:gallery_project:gallery:1.4.4_pl5
Gallery Project » Gallery » Version: 1.4_pl1

cpe:2.3:a:gallery_project:gallery:1.4_pl1
Gallery Project » Gallery » Version: 1.4_pl2

cpe:2.3:a:gallery_project:gallery:1.4_pl2
Gallery Project » Gallery » Version: 1.5

cpe:2.3:a:gallery_project:gallery:1.5
Gallery Project » Gallery » Version: 1.5.1

cpe:2.3:a:gallery_project:gallery:1.5.1
Gallery Project » Gallery » Version: 1.5.1_rc2

cpe:2.3:a:gallery_project:gallery:1.5.1_rc2
Gallery Project » Gallery » Version: 1.5.2_rc2

cpe:2.3:a:gallery_project:gallery:1.5.2_rc2

Vulnerabilities

Vulnerable Software

Vulnerability Details CVE-2006-0330

Products

Pricing

Contact Us