6 Medium
AI Score
Confidence
High
0.009 Low
EPSS
Percentile
82.6%
Cross-site scripting (XSS) vulnerability in index.php for GOOP Gallery 2.0, and possibly other versions before 2.0.3, allows remote attackers to inject arbitrary HTML or web script via the image parameter.
lostmon.blogspot.com/2006/10/goop-gallery-image-param-cross-site.html
securitytracker.com/id?1017081
webgeneius.com/index.php?mod=blog&id=49
www.securityfocus.com/bid/20554
exchange.xforce.ibmcloud.com/vulnerabilities/29643