Gallery CVEs and Security Vulnerabilities

Filtered by vendor Menalto Subscriptions

Filtered by product Gallery Subscriptions

Switch to Advanced Search (Beta)

Total 21 CVE

CVE	Vendors	Products	Updated	CVSS v3.1
CVE-2007-6687	1 Menalto	1 Gallery	2025-04-09	N/A
Multiple cross-site scripting (XSS) vulnerabilities in Menalto Gallery before 2.2.4 allow remote attackers to inject arbitrary web script or HTML via crafted filenames to the (1) Core or (2) add-item modules; or via (3) HTTP PROPPATCH in the WebDAV module.

« first previous Page 2 of 2.