CVE-2008-1987

Description

Cross-site scripting (XSS) vulnerability in search.php in EncapsGallery 2.0.2 allows remote attackers to inject arbitrary web script or HTML via the search parameter.

Affected Software
References

Software	From	Fixed in
encaps / encapsgallery	2.0.2	2.0.2.x

http://secunia.com/advisories/29824
http://www.encaps.net/software/encapsgallery/download-image-album.php
http://www.securityfocus.com/bid/28887
https://exchange.xforce.ibmcloud.com/vulnerabilities/41948

Severity: Low

CVE: CVE-2008-1987
Published: Apr 27, 2008
Updated: Apr 13, 2023
Exploit:

Severity: Low
Score: 4.3
AV:N/AC:M/Au:N/C:N/I:P/A:N

CWE-79

A7 - Cross-Site Scripting (XSS)

CVE-2008-1987

Description

Details

CVSS v2

CWEs

OWASP TOP 10