CVE-2006-3563 – Winged Gallery 1.0 - 'Thumb.php' Cross-Site Scripting

https://notcve.org/view.php?id=CVE-2006-3563

Cross-site scripting (XSS) vulnerability in gallery/thumb.php in Winged Gallery 1.0 allows remote attackers to inject arbitrary web script or HTML via the image parameter. Vulnerabilidad de secuencias de comandos en sitios cruzados (XSS) en gallery/thumb.php de Winged Gallery 1.0 permite a atacantes remotos inyectar secuencias de comandos web o HTML de su elección a través del parámetro image. • https://www.exploit-db.com/exploits/28102 http://securityreason.com/securityalert/1219 http://www.securityfocus.com/archive/1/438435/100/200/threaded http://www.securityfocus.com/bid/18629 https://exchange.xforce.ibmcloud.com/vulnerabilities/27378 •