VYPR
Unrated severityNVD Advisory· Published Jun 16, 2008· Updated Jun 16, 2026

CVE-2008-2720

CVE-2008-2720

Description

Cross-site scripting (XSS) vulnerability in Menalto Gallery before 2.2.5 allows remote attackers to inject arbitrary web script or HTML via the (1) host and (2) path components of a URL.

AI Insight

LLM-synthesized narrative grounded in this CVE's description and references.

Affected products

9
  • Menalto/Gallery9 versions
    cpe:2.3:a:menalto:gallery:*:*:*:*:*:*:*:*+ 8 more
    • cpe:2.3:a:menalto:gallery:*:*:*:*:*:*:*:*range: <=2.2.4
    • cpe:2.3:a:menalto:gallery:2.1:*:*:*:*:*:*:*
    • cpe:2.3:a:menalto:gallery:2.1.1:*:*:*:*:*:*:*
    • cpe:2.3:a:menalto:gallery:2.1.2:*:*:*:*:*:*:*
    • cpe:2.3:a:menalto:gallery:2.2.0:*:*:*:*:*:*:*
    • cpe:2.3:a:menalto:gallery:2.2.1:*:*:*:*:*:*:*
    • cpe:2.3:a:menalto:gallery:2.2.2:*:*:*:*:*:*:*
    • cpe:2.3:a:menalto:gallery:2.2.3:*:*:*:*:*:*:*
    • (no CPE)range: <2.2.5

Patches

Vulnerability mechanics

References

7

News mentions

0

No linked articles in our index yet.