2 matches found
secunia-SelectaPix.txt
====================================================================== Secunia Research 09/06/2006 - SelectaPix Cross-Site Scripting and SQL Injection Vulnerabilities - ====================================================================== Table of Contents Affected...
CVE-2006-2912
CVE-2006-2912 affects SelectaPix 1.31. Multiple SQL injection vulnerabilities exist in the web interface: parameters albumID (view_album.php, index.php), imageID (popup.php), and username/password (admin/member.php). Remote attackers could inject SQL commands to access or modify the database. Pro...