PhotoKorn allows remote attackers to obtain database credentials via a direct request to update/update3.php, which includes the credentials in its...
7.4AI Score
0.007EPSS
Multiple SQL injection vulnerabilities in photokorn 1.53 and 1.542 allow remote attackers to execute arbitrary SQL commands via the (1) cat, (2) pic and (3) page parameter in index.php; (4) id parameter in postcard.php; and (5) cat parameter in...
9.5AI Score
0.007EPSS