Description
Cross-site scripting (XSS) vulnerability in John Beatty Easy PHP Photo Album 1.0 allows remote attackers to inject arbitrary web script or HTML via the dir parameter.
Exploits (1)
exploitdb
WRITEUP
VERIFIED
https://www.exploit-db.com/exploits/23338
References (2)
Core 2
Core References
Exploit, Vendor Advisory vdb-entry
x_refsource_bid
http://www.securityfocus.com/bid/8977
Exploit, Vendor Advisory x_refsource_misc
http://security.nnov.ru/docs5347.html
Scores
EPSS
0.0063
EPSS Percentile
70.5%
Details
Status
published
Products (1)
john_beatty/easy_php_photo_album
1.0
Published
May 11, 2003
Tracked Since
Feb 18, 2026