Unrated severityNVD Advisory· Published Jun 16, 2008· Updated Jun 16, 2026
CVE-2008-2720
CVE-2008-2720
Description
Cross-site scripting (XSS) vulnerability in Menalto Gallery before 2.2.5 allows remote attackers to inject arbitrary web script or HTML via the (1) host and (2) path components of a URL.
AI Insight
LLM-synthesized narrative grounded in this CVE's description and references.
Affected products
9cpe:2.3:a:menalto:gallery:*:*:*:*:*:*:*:*+ 8 more
- cpe:2.3:a:menalto:gallery:*:*:*:*:*:*:*:*range: <=2.2.4
- cpe:2.3:a:menalto:gallery:2.1:*:*:*:*:*:*:*
- cpe:2.3:a:menalto:gallery:2.1.1:*:*:*:*:*:*:*
- cpe:2.3:a:menalto:gallery:2.1.2:*:*:*:*:*:*:*
- cpe:2.3:a:menalto:gallery:2.2.0:*:*:*:*:*:*:*
- cpe:2.3:a:menalto:gallery:2.2.1:*:*:*:*:*:*:*
- cpe:2.3:a:menalto:gallery:2.2.2:*:*:*:*:*:*:*
- cpe:2.3:a:menalto:gallery:2.2.3:*:*:*:*:*:*:*
- (no CPE)range: <2.2.5
Patches
Vulnerability mechanics
References
7- secunia.com/advisories/30650nvdVendor Advisory
- gallery.menalto.com/gallery_2.2.5_releasednvd
- secunia.com/advisories/30826nvd
- www.securityfocus.com/bid/29681nvd
- exchange.xforce.ibmcloud.com/vulnerabilities/43024nvd
- www.redhat.com/archives/fedora-package-announce/2008-June/msg00766.htmlnvd
- www.redhat.com/archives/fedora-package-announce/2008-June/msg00836.htmlnvd
News mentions
0No linked articles in our index yet.