Alerts This Week
Warning Icon 1 692
Alerts This Week
Warning Icon 1 692

Gentoo: GLSA-200601-13 Low: Gallery Cross-Site Scripting Issue

gentoo
Calendar Grey January 26, 2006
Dist Gentoo Esm H88
Gentoo Linux Security Notice for Media Plugin highlights a flaw enabling code execution; prompt update advised for protection.
Gallery is possibly vulnerable to a cross-site scripting attack that could allow arbitrary JavaScript code execution.

Summary

Gentoo Linux Security Advisory GLSA 200601-13 https://security.gentoo.org/ Severity: Low Title: Gallery: Cross-site scripting vulnerability Date: January 26, 2006 Bugs: #119590 ID: 200601-13

Synopsis ======= Gallery is possibly vulnerable to a cross-site scripting attack that could allow arbitrary JavaScript code execution.
Background ========= Gallery is a web application written in PHP which is used to organize and publish photo albums. It allows multiple users to build and maintain their own albums. It also supports the mirroring of images on other servers.
Affected packages ================ ------------------------------------------------------------------- Package / Vulnerable / Unaffected ------------------------------------------------------------------- 1 www-apps/gallery < 1.5.2 >= 1.5.2
======...

Read the Full Advisory

Topics%20covered

Topics Covered

security advisory gentoo software update cross-site scripting web application low severity gallery

Resolution

References

Availability

style>.gentoo_availability{display:block;}

Concerns

Severity
low
Lowest
Low
Medium
High
Critical

Topics%20covered

Topics Covered

security advisory gentoo software update cross-site scripting web application low severity gallery

Synopsis

Background

Get the latest News and Insights

Get the latest Linux and open source security news straight to your inbox.

Affected Packages

Impact

Workaround

Related News

Your message here