Paul Griffin: >> Simple Php Gallery Security Vulnerabilities
Cross-site scripting (XSS) vulnerability in sp_index.php in Simple PHP Gallery 1.1 allows remote attackers to inject arbitrary web script or HTML via the dir parameter.
CVSS Score
6.8
EPSS Score
0.004
Published
2006-12-04
sp_index.php in Simple PHP Gallery 1.1 allows remote attackers to obtain sensitive information via an invalid dir parameter, which reveals the path in an error message.
CVSS Score
7.5
EPSS Score
0.006
Published
2006-12-04