CVE-2006-2052

CVE-2006-2052 · MEDIUM Severity

AV:N/AC:M/AU:N/C:P/I:P/A:N

Cross-site scripting (XSS) vulnerability in Verosky Media Instant Photo Gallery allows remote attackers to inject arbitrary web script or HTML via the member parameter in a viewpro action in member.php. NOTE: the original report may be inaccurate, since the "viewpro" string does not appear in the source code for version 1.0.2 of the product.

Learn more about our Web App Pen Testing.