Unrated severityNVD Advisory· Published Oct 1, 2008· Updated Jun 16, 2026
CVE-2008-4370
CVE-2008-4370
Description
Multiple cross-site scripting (XSS) vulnerabilities in Availscript Photo Album allow remote attackers to inject arbitrary web script or HTML via the (1) sid parameter to pics.php and the (2) a parameter to view.php.
AI Insight
LLM-synthesized narrative grounded in this CVE's description and references.
Affected products
2cpe:2.3:a:availscript:availscript_photo_album:*:*:*:*:*:*:*:*+ 1 more
- cpe:2.3:a:availscript:availscript_photo_album:*:*:*:*:*:*:*:*
- (no CPE)
Patches
Vulnerability mechanics
References
4News mentions
0No linked articles in our index yet.