CVE-2006-6247

2006-12-04T11:28:00
ID CVE-2006-6247
Type cve
Reporter cve@mitre.org
Modified 2018-10-17T21:47:00

Description

Multiple SQL injection vulnerabilities in Uapplication UPhotoGallery 1.1 allow remote attackers to execute arbitrary SQL commands via the ci parameter to (1) slideshow.asp or (2) thumbnails.asp.