CVE-2012-4342

Menalto Gallery < 3.0.3 - XSS

Title source: rule

Description

Multiple cross-site scripting (XSS) vulnerabilities in Gallery 3 before 3.0.4 allow remote attackers to inject arbitrary web script or HTML via unspecified vectors.

References (3)

[Various Sources] http://gallery.menalto.com/gallery_3_0_4

[Mailing List, Third Party Advisory] http://lists.fedoraproject.org/pipermail/package-announce/2012-June/082954.html

[Mailing List, Third Party Advisory] http://lists.fedoraproject.org/pipermail/package-announce/2012-June/082995.html

Scores

EPSS 0.0025

EPSS Percentile 48.5%

Classification

CWE

CWE-79

Status published

Affected Products (10)

menalto/gallery < 3.0.3

menalto/gallery

n/a/n/a

Timeline

Published Aug 15, 2012

Tracked Since Feb 18, 2026