Blue-Collar Productions: >> I-Gallery >> 3.3 Security Vulnerabilities
Multiple cross-site scripting (XSS) vulnerabilities in BlueCollar i-Gallery 4.1 PLUS and earlier allow remote attackers to inject arbitrary web script or HTML via the (1) n and (2) d parameters in (a) login.asp and the d parameter in (b) igallery.asp.
CVSS Score
6.8
EPSS Score
0.014
Published
2006-06-15
Directory traversal vulnerability in folderview.asp for Blue-Collar Productions i-Gallery 3.3 allows remote attackers to read arbitrary files and directories via the folder parameter.
CVSS Score
5.0
EPSS Score
0.028
Published
2005-06-20
Cross-site scripting (XSS) vulnerability in folderview.asp for BlueCollar iGallery 3.3 allows remote attackers to inject arbitrary web script or HTML via the folder parameter.
CVSS Score
4.3
EPSS Score
0.003
Published
2005-06-20