CVE-2005-0220

Cross-site scripting vulnerability in login.php in Gallery 1.4.4-pl2 allows remote attackers to inject arbitrary web script or HTML via the username field.

Date published : 2005-02-06

http://marc.info/?l=bugtraq&m=110608459222364&w=2

http://gallery.menalto.com/modules.php?op=modload&name=News&file=article&sid=147