CVE-2008-6495

Publication date

2009-03-20 00:00:00

Family

mitre

State

PUBLISHED

Description

Cross-site scripting (XSS) vulnerability in index.php in Fritz Berger yet another php photo album - next generation (yappa-ng) 2.3.2 allows remote attackers to inject arbitrary web script or HTML via the album parameter.