CVE-2008-2501

2008-05-29T19:32:00
ID CVE-2008-2501
Type cve
Reporter NVD
Modified 2017-09-28T21:31:11

Description

Multiple SQL injection vulnerabilities in PHPhotoalbum 0.5 allow remote attackers to execute arbitrary SQL commands via the (1) album parameter to thumbnails.php and the (2) pid parameter to displayimage.php.