AI Score
Confidence
Low
EPSS
Percentile
78.7%
Multiple SQL injection vulnerabilities in EImagePro allow remote attackers to execute arbitrary SQL commands via the (1) CatID parameter to subList.asp, (2) SubjectID parameter to imageList.asp, or (3) Pic parameter to view.asp.
downloads.securityfocus.com/vulnerabilities/exploits/eimagepro-xss.txt
secunia.com/advisories/20043
www.osvdb.org/25331
www.osvdb.org/25332
www.osvdb.org/25333
www.securityfocus.com/bid/17911
www.vupen.com/english/advisories/2006/1749
exchange.xforce.ibmcloud.com/vulnerabilities/26343