Filtered by vendor Xeroxer Subscriptions
Total 2 CVE
CVE Vendors Products Updated CVSS v3.1
CVE-2007-1125 1 Xeroxer 1 Simple One-file Gallery 2024-11-21 N/A
Cross-site scripting (XSS) vulnerability in gallery.php in XeroXer Simple one-file gallery allows remote attackers to inject arbitrary web script or HTML via the f parameter.
CVE-2007-1124 1 Xeroxer 1 Simple One-file Gallery 2024-11-21 N/A
Directory traversal vulnerability in gallery.php in XeroXer Simple one-file gallery allows remote attackers to read arbitrary files via a .. (dot dot) in the f parameter.