VYPR
← All advisories
Unrated severityNVD Advisory· Published May 11, 2003· Updated Jun 16, 2026

CVE-2003-1146

CVE-2003-1146

Description

Cross-site scripting (XSS) vulnerability in John Beatty Easy PHP Photo Album 1.0 allows remote attackers to inject arbitrary web script or HTML via the dir parameter.

AI Insight

LLM-synthesized narrative grounded in this CVE's description and references.

Affected products

2
  • John Beatty/Easy PHP Photo Album2 versions
    cpe:2.3:a:john_beatty:easy_php_photo_album:1.0:*:*:*:*:*:*:*+ 1 more
    • cpe:2.3:a:john_beatty:easy_php_photo_album:1.0:*:*:*:*:*:*:*
    • (no CPE)range: 1.0

Patches

Vulnerability mechanics

Root cause

"The application does not properly sanitize user-supplied input in the 'dir' parameter, leading to HTML injection."

Attack vector

A remote attacker can exploit this vulnerability by injecting arbitrary web script or HTML via the 'dir' parameter in requests to the application. The vulnerability is due to insufficient sanitization of user-supplied input [ref_id=1]. Successful exploitation could allow an attacker to steal cookie-based authentication credentials or perform other attacks [ref_id=1]. Example URLs demonstrate injecting HTML tags like `<iframe>` or `<h1>` through the 'dir' parameter [ref_id=1].

Affected code

The vulnerability is present in John Beatty Easy PHP Photo Album version 1.0. The 'dir' parameter in the application is susceptible to HTML injection due to insufficient sanitization of user-supplied input [ref_id=1]. The affected scripts appear to be `showimages.php` and `showfullimage.php` based on example URLs [ref_id=1].

What the fix does

The advisory does not specify a patch or provide details on how the vulnerability is fixed. It is recommended that users update to a version that addresses this issue, however, specific version information for a patched release is not provided. Users should consult the vendor for remediation guidance.

Preconditions

  • networkThe vulnerable application must be accessible over the network.
  • inputThe attacker must be able to control the value of the 'dir' parameter.

Reproduction

http://www.example.com/photos/showimages.php?dir=<iframe%20src="C:\"%20width=400%20height=400></iframe> http://www.example.com//photos/showfullimage.php?dir=[dir name][spc]St[spc]Clair&image=<h1>hello</h1>

Generated on Jun 2, 2026. Inputs: CWE entries + fix-commit diffs from this CVE's patches. Citations validated against bundle.

References

2

News mentions

0

No linked articles in our index yet.