vendor:
by:
7.5
CVSS
HIGH
Input-Validation
79
CWE
Product Name:
Affected Version From:
Affected Version To:
Patch Exists: NO
Related CWE:
CPE:
Platforms Tested:
Galerie Dezign-Box Multiple Input-Validation Vulnerabilities
The application is prone to multiple input-validation vulnerabilities. These include a cross-site scripting vulnerability and multiple file-upload vulnerabilities. Attackers can exploit these vulnerabilities to execute arbitrary script code, steal authentication credentials, upload and execute arbitrary code, and facilitate unauthorized access or privilege escalation.
Mitigation:
Implement proper input validation and sanitization techniques to mitigate these vulnerabilities.