Vulnerabilities (CVE)

Filtered by vendor Goollery Subscribe
Total 2 CVE
CVE Vendors Products Updated CVSS v2 CVSS v3
CVE-2004-2245 1 Goollery 1 Goollery 2023-12-10 4.3 MEDIUM N/A
Cross-site scripting (XSS) vulnerability in Goollery 0.03 allows remote attackers to inject arbitrary HTML or web script via the (1) page parameter to viewalbum.php or (2) btopage parameter to viewpic.php.
CVE-2004-2246 1 Goollery 1 Goollery 2023-12-10 4.3 MEDIUM N/A
Cross-site scripting (XSS) vulnerability in Goollery before 0.04b allows remote attackers to inject arbitrary HTML or web script via the conversation_id parameter to viewpic.php.