CVSS: 6.1EPSS: 0%CPEs: 3EXPL: 1CVE-2008-4803 – Simple PHP Scripts Gallery 0.x - 'index.php' Cross-Site Scripting
https://notcve.org/view.php?id=CVE-2008-4803
31 Oct 2008 — Cross-site scripting (XSS) vulnerability in index.php in Simple PHP Scripts gallery 0.1, 0.3, and 0.4 allows remote attackers to inject arbitrary web script or HTML via the gallery parameter. NOTE: the provenance of this information is unknown; the details are obtained solely from third party information. Vulnerabilidad de secuencias de comandos en sitios cruzados (XSS) en index.php en Simple PHP Scripts gallery 0.1, 0.3 y 0.4 permite a atacantes remotos inyectar secuencias de comandos web o HTML mediante e... • https://www.exploit-db.com/exploits/31319 • CWE-79: Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') •
CVSS: 9.8EPSS: 0%CPEs: 1EXPL: 0CVE-2007-2679
https://notcve.org/view.php?id=CVE-2007-2679
15 May 2007 — PHP file inclusion vulnerability in index.php in Ivan Peevski gallery 0.3 in Simple PHP Scripts (sphp) allows remote attackers to execute arbitrary PHP code via a UNC share pathname or a local file pathname in the gallery parameter, which is accessed by the file_exists function. NOTE: the provenance of this information is unknown; the details are obtained solely from third party information. Vulnerabilidad de inclusión remota de archivo en PHP en index.php en Ivan Peevski gallery 0.3 en Simple PHP Scripts (... • http://secunia.com/advisories/24912 •