Cross-site scripting (XSS) vulnerability in Menalto Gallery before 2.2.5 allows remote attackers to inject arbitrary web script or HTML via the (1) host and (2) path components of a URL.
Software | From | Fixed in |
---|---|---|
menalto / gallery | - | 2.2.4.x |
menalto / gallery | 2.1 | 2.1.x |
menalto / gallery | 2.1.1 | 2.1.1.x |
menalto / gallery | 2.1.2 | 2.1.2.x |
menalto / gallery | 2.2.0 | 2.2.0.x |
menalto / gallery | 2.2.1 | 2.2.1.x |
menalto / gallery | 2.2.2 | 2.2.2.x |
menalto / gallery | 2.2.3 | 2.2.3.x |