EUVD-2007-3398

Malware in sbrugna...

EUVD-2007-3397

Malware in sbrugna...

ClickGallery Server SQL Injection Vulnerability

No description provided by source. ============================================================== ClickGallery Server--SQl iNjection Vulnerabilty ============================================================== Name : ClickGallery Server--SQl iNjection Vulnerabilty Date : july 9,2010 Critical Level...

ClickGallery Server - SQL Injection

ClickGallery Server - SQL Injection ============================================================== ClickGallery Server--SQl iNjection Vulnerabilty ============================================================== Name : ClickGallery Server--SQl iNjection Vulnerabilty Date : july 9,2010 Critical Leve...

ClickGallery Server - SQL Injection

============================================================== ClickGallery Server--SQl iNjection Vulnerabilty ============================================================== Name : ClickGallery Server--SQl iNjection Vulnerabilty Date : july 9,2010 Critical Level :VERY HIGH vendor URL :...

Sql injection

SQL injection vulnerability in editimage.asp in ClickGallery Server 5.1 and earlier allows remote attackers to execute arbitrary SQL commands via the imageid parameter...

CVE-2007-3412

Cross-site scripting XSS vulnerability in editimage.asp in ClickGallery Server 5.1 and earlier allows remote attackers to inject arbitrary web script or HTML via the from parameter...

CVE-2007-3411

SQL injection vulnerability in editimage.asp in ClickGallery Server 5.1 and earlier allows remote attackers to execute arbitrary SQL commands via the imageid parameter...

CVE-2007-3412

Cross-site scripting XSS vulnerability in editimage.asp in ClickGallery Server 5.1 and earlier allows remote attackers to inject arbitrary web script or HTML via the from parameter...

CVE-2007-3411

ClickGallery Server 5.1 and earlier is affected by an SQL injection in edit_image.asp, exploitable via the image_id parameter. Root cause: improper handling of image_id enabling arbitrary SQL execution. Impact is described as partial confidentiality/integrity/availability (CVSS2 base 7.5, HIGH, n...

CVE-2007-3412

The CVE-2007-3412 entry describes a cross-site scripting (XSS) vulnerability in ClickGallery Server 5.1 and earlier, exposed via the from parameter of edit_image.asp. The affected component is the server-side edit_image.asp handling input parameters, with the root cause being insufficient sanitiz...

CVE-2007-3411

SQL injection vulnerability in editimage.asp in ClickGallery Server 5.1 and earlier allows remote attackers to execute arbitrary SQL commands via the imageid parameter...

ClickGallery Server vuln.

ClickGallery Server vuln. Vuln. discovered by : r0t Date: 2 May 2007 vendor:http://www.clicktech.com/ orginal advisory: http://pridels-team.blogspot.com/2007/06/clickgallery-server-vuln.html affected versions: 5.1 and previous 1. ClickGallery Server contains a flaw that allows a remote sql...