Cross-site scripting (XSS) vulnerability in edit_image.asp in ClickGallery Server 5.1 and earlier allows remote attackers to inject arbitrary web script or HTML via the from parameter.
CPE | Name | Operator | Version |
---|---|---|---|
clickgallery | le | 5.0 | |
clickgallery | eq | 5.1 |