Blue-Collar Productions: >> I-Gallery >> 3.3 Security Vulnerabilities
Multiple cross-site scripting (XSS) vulnerabilities in BlueCollar i-Gallery 4.1 PLUS and earlier allow remote attackers to inject arbitrary web script or HTML via the (1) n and (2) d parameters in (a) login.asp and the d parameter in (b) igallery.asp.
CVSS Score
6.8
EPSS Score
0.013
Published
2006-06-15
Directory traversal vulnerability in folderview.asp for Blue-Collar Productions i-Gallery 3.3 allows remote attackers to read arbitrary files and directories via the folder parameter.
CVSS Score
5.0
EPSS Score
0.075
Published
2005-06-20
Cross-site scripting (XSS) vulnerability in folderview.asp for BlueCollar iGallery 3.3 allows remote attackers to inject arbitrary web script or HTML via the folder parameter.
CVSS Score
4.3
EPSS Score
0.009
Published
2005-06-20