Sql injection

2009-02-0619:30:00

PRIOn knowledge base

www.prio-n.com

8.7 High

AI Score

Confidence

Low

0.001 Low

EPSS

Percentile

49.4%

JSON

SQL injection vulnerability in album.php in Camera Life 2.6.2b4 allows remote attackers to execute arbitrary SQL commands via the id parameter, a different vector than CVE-2008-3355.

CPENameOperatorVersion
camera_lifeeq2.6.2-b4

CPE	Name	Operator	Version
	camera_life	eq	2.6.2-b4

References

sourceforge.net/project/shownotes.php?group_id=70910&release_id=643552

www.securityfocus.com/bid/31689

exchange.xforce.ibmcloud.com/vulnerabilities/45803

www.exploit-db.com/exploits/6710