VULHUB ™

Bharat Mediratta Gallery is a freely available, open-source web based gallery software. It allows users to create their own web galleries based on a template. Gallery is prone to cross-site scripting attacks. HTML tags are not properly escaped from search queries or comment values. This may allow an attacker to submit malicious script code which may be executed on a web user, in the context of the site running Gallery. This issue can be exploited by an attacker to steal a legitimate user's cookie-based authentication credentials.

Bharat Mediratta Gallery is a freely available, open-source web based gallery software. It allows users to create their own web galleries based on a template. Gallery is prone to cross-site scripting attacks. HTML tags are not properly escaped from search queries or comment values. This may allow an attacker to submit malicious script code which may be executed on a web user, in the context of the site running Gallery. This issue can be exploited by an attacker to steal a legitimate user's cookie-based authentication credentials.