Vulnerability Details CVE-2012-4342
Multiple cross-site scripting (XSS) vulnerabilities in Gallery 3 before 3.0.4 allow remote attackers to inject arbitrary web script or HTML via unspecified vectors.
Exploit prediction scoring system (EPSS) score
EPSS Score 0.003
EPSS Ranking 48.7%
CVSS Severity
CVSS v2 Score 4.3
References
- http://gallery.menalto.com/gallery_3_0_4
- http://lists.fedoraproject.org/pipermail/package-announce/2012-June/082954.html
- http://lists.fedoraproject.org/pipermail/package-announce/2012-June/082995.html
- http://gallery.menalto.com/gallery_3_0_4
- http://lists.fedoraproject.org/pipermail/package-announce/2012-June/082954.html
- http://lists.fedoraproject.org/pipermail/package-announce/2012-June/082995.html
Products affected by CVE-2012-4342
-
cpe:2.3:a:menalto:gallery:1.5.7
-
cpe:2.3:a:menalto:gallery:1.6
-
cpe:2.3:a:menalto:gallery:2.1
-
cpe:2.3:a:menalto:gallery:2.1.1
-
cpe:2.3:a:menalto:gallery:2.1.2
-
cpe:2.3:a:menalto:gallery:2.2.0
-
cpe:2.3:a:menalto:gallery:2.2.1
-
cpe:2.3:a:menalto:gallery:2.2.2
-
cpe:2.3:a:menalto:gallery:2.2.3
-
cpe:2.3:a:menalto:gallery:2.2.4
-
cpe:2.3:a:menalto:gallery:2.2.6
-
cpe:2.3:a:menalto:gallery:3.0
-
cpe:2.3:a:menalto:gallery:3.0.1
-
cpe:2.3:a:menalto:gallery:3.0.2
-
cpe:2.3:a:menalto:gallery:3.0.3