-------------------------------------------------------------------------- Debian Security Advisory DSA 355-1 security@debian.org http://www.debian.org/security/ Matt Zimmerman July 30th, 2003 http://www.debian.org/security/faq -------------------------------------------------------------------------- Package : gallery Vulnerability : cross-site scripting Problem-Type : remote Debian-specific: no CVE Ids : CAN-2003-0614 Larry Nguyen discovered a cross site scripting vulnerability in gallery, a web-based photo album written in php. This security flaw can allow a malicious user to craft a URL that executes Javascript code on your website.
glsa sent