Sql injection

2008-06-1822:41:00

PRIOn knowledge base

www.prio-n.com

9.1 High

AI Score

Confidence

Low

0.002 Low

EPSS

Percentile

60.6%

JSON

SQL injection vulnerability in gallery.asp in Xigla Absolute Image Gallery XE allows remote attackers to execute arbitrary SQL commands via the categoryid parameter in a viewimage action.

References

bugreport.ir/index.php?/41

securityreason.com/securityalert/3950

www.securityfocus.com/bid/29672

exchange.xforce.ibmcloud.com/vulnerabilities/43052

marc.info/?l=bugtraq&m=121322052622903&w=2