CVEDB API

Vulnerabilities

By Date
Known Exploited
Advanced Search

Vulnerable Software

Vendors
Products

Vulnerability Details CVE-2010-0979

Cross-site scripting (XSS) vulnerability in display.php in Obsession-Design Image-Gallery (ODIG) 1.1 allows remote attackers to inject arbitrary web script or HTML via the folder parameter.

Exploit prediction scoring system (EPSS) score

EPSS Score 0.003

EPSS Ranking 54.6%

CVSS Severity

CVSS v2 Score 4.3

References

http://packetstormsecurity.org/1001-exploits/odig-xss.txt
http://secunia.com/advisories/38107
http://www.vupen.com/english/advisories/2010/0048
http://packetstormsecurity.org/1001-exploits/odig-xss.txt
http://secunia.com/advisories/38107
http://www.vupen.com/english/advisories/2010/0048

Products affected by CVE-2010-0979

Obsession-Design » Image-Gallery » Version: 1.1

cpe:2.3:a:obsession-design:image-gallery:1.1

Vulnerabilities

Vulnerable Software

Vulnerability Details CVE-2010-0979

Products

Pricing

Contact Us