[VIM] PhotoPost PHP 4.8c (showgallery.php) Cross Site Scripting
rkeith at securityfocus.com
Thu Mar 3 11:30:18 CST 2011
We'll get this fixed up. Thanks for pointing it out George.
On 03/02/2011 07:05 PM, George A. Theall wrote:
> NassRawI posted to Bugtraq of a cross-site scripting in PhotoPost PHP
> 4.8c involving the 'si' parameter of the 'showgallery.php' script
> (http://archives.neohapsis.com/archives/bugtraq/2011-03/0027.html). BID
> 46649 was created to track that even though the issue appears to be
> covered already by BID 12157. How come SecurityFocus didn't just update
> the older BID? Rob?
More information about the VIM