Description
Cross-site scripting (XSS) vulnerability in folderview.asp for BlueCollar iGallery 3.3 allows remote attackers to inject arbitrary web script or HTML via the folder parameter.
Affected products
- blue-collar_productions / i-gallery3.3 – 3.3
References
- VENDOR_ADVISORYhttp://www.vupen.com/english/advisories/2005/0825
- MAILING_LISThttp://marc.info/?l=bugtraq&m=111936111630489&w=2