CVSS: 4.3EPSS: 0%CPEs: 1EXPL: 2CVE-2008-6515 – Yappa-ng - Query String Cross-Site Scripting
https://notcve.org/view.php?id=CVE-2008-6515
Cross-site scripting (XSS) vulnerability in Fritz Berger yet another php photo album - next generation (yappa-ng) allows remote attackers to inject arbitrary web script or HTML via the query string to the default URI. Vulnerabilidad de secuencias de comandos en sitios cruzados (XSS) en Fritz Berger yet another php photo album - next generation (yappa-ng) lo que permite a atacantes remotos inyectar secuencias de comandos web o HTML de forma arbitraria a través de una cadena de petición a la URI por defecto. • https://www.exploit-db.com/exploits/32640 http://packetstormsecurity.org/0812-exploits/yappang-xss.txt http://www.securityfocus.com/bid/32623 https://exchange.xforce.ibmcloud.com/vulnerabilities/49494 • CWE-79: Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') •