Unrated severityNVD Advisory· Published Jan 3, 2005· Updated Apr 16, 2026

CVE-2005-0274

Description

Multiple cross-site scripting (XSS) vulnerabilities in showgallery.php in PhotoPost before 4.86 allow remote attackers to inject arbitrary web script or HTML via the (1) cat, (2) si, (3) page, or (4) ppuser parameters.

Affected products

Photopost/Photopost PHP Pro
cpe:2.3:a:photopost:photopost_php_pro:*:*:*:*:*:*:*:*
Range: <=4.85

Patches

No patches discovered yet.

Vulnerability mechanics

AI mechanics synthesis has not run for this CVE yet.

References

www.gulftech.orgnvdPatchVendor Advisory
www.securityfocus.com/bid/12156nvdPatchVendor Advisory
secunia.com/advisories/13680/nvdExploitVendor Advisory
marc.infonvd
exchange.xforce.ibmcloud.com/vulnerabilities/18744nvd

News mentions

No linked articles in our index yet.

cvss	0.000
epss	0.004
exploit	0.030
kev	0.000
patch	0.000
ransomware	0.000