Lucene search
K

CVE-2004-1835

🗓️ 10 May 2005 04:00:00Reported by mitreType 
cve
 cve
🔗 web.nvd.nist.gov👁 40 Views🌐 WEB

"SQL injection vulnerabilities in Invision Gallery 1.0.1

Related
Detection
Refs
Paths
ReporterTitlePublishedViews
Family
Cvelist
CVE-2004-1835
10 May 200504:00
cvelist
Exploit DB
Invision Gallery < 1.0.1 - SQL Injection
21 Mar 200400:00
exploitdb
EUVD
EUVD-2004-1828
7 Oct 202500:30
euvd
exploitpack
Invision Gallery 1.0.1 - SQL Injection
21 Mar 200400:00
exploitpack
NVD
CVE-2004-1835
31 Dec 200405:00
nvd
Packet Storm
Invision Gallery 1.0.1 SQL Injection
28 Mar 200400:00
packetstorm
NVD
ParameterPositionPathDescriptionCWE
idquery paramindex.php?act=comments&id=[Evil_Query]SQL Injection via id parameter in Top Site List comments endpointCWE-89
imgquery paramindex.php?act=module&module=gallery&cmd=si&img=[SQL]SQL Injection via img parameter in gallery si commandCWE-89
imgquery paramindex.php?act=module&module=gallery&cmd=editimg&img=[SQL]SQL Injection via img parameter in gallery editimg commandCWE-89
imgquery paramindex.php?act=module&module=gallery&cmd=ecard&img=[SQL]SQL Injection via img parameter in gallery ecard commandCWE-89
imgquery paramindex.php?act=module&module=gallery&cmd=moveimg&img=[SQL]SQL Injection via img parameter in gallery moveimg commandCWE-89
imgquery paramindex.php?act=module&module=gallery&cmd=delimg&img=[SQL]SQL Injection via img parameter in gallery delimg commandCWE-89
catquery paramindex.php?act=module&module=gallery&cmd=post&cat=[SQL]SQL Injection via cat parameter in gallery post commandCWE-89
sort_keyquery paramindex.php?act=module&module=gallery&cmd=sc&op=user&sort_key=[SQL]SQL Injection via sort_key parameter in gallery sc commandCWE-89
sort_keyquery paramindex.php?act=module&module=gallery&cmd=sc&op=user&sort_key=date&order_key=[SQL]SQL Injection via sort_key/order_key parameters in gallery sc commandCWE-89
order_keyquery paramindex.php?act=module&module=gallery&cmd=sc&op=user&sort_key=date&order_key=[SQL]SQL Injection via sort_key/order_key parameters in gallery sc commandCWE-89
Rows per page

Data

Build on a solid foundation with Vulners data

We provide the essential building blocks for cybersecurity solutions with comprehensive, structured, and constantly updated vulnerability and exploits data

Api

Power your application with Vulners API

The Vulners REST API offers reliable, high-performance access to vulnerability intelligence, with 99.9% SLA uptime and CDN-backed data delivery for seamless global access

App

Assess and manage vulnerabilities with Vulners tools

Built on top of Vulners' database and SDK, end-user solutions give security professionals and developers lightweight and powerful tools for vulnerability remediation

16 Jun 2026 22:08Current
8.3High risk
Vulners AI Score8.3
CVSS 27.5
EPSS0.0493
40