3 matches found
Debian Security Advisory DSA 1389-1 (zoph)
The remote host is missing an update to zoph announced via advisory DSA 1389-1. OpenVAS Vulnerability Test $Id: deb13891.nasl 6616 2017-07-07 12:10:49Z cfischer $ Description: Auto-generated from advisory DSA 1389-1 Authors: Thomas Reinke Copyright: Copyright c 2007 E-Soft Inc...
Debian DSA-1389-2 : zoph - missing input sanitising
It was discovered that zoph, a web-based photo management system, performs insufficient input sanitising, which allows SQL injection. %NASLMINLEVEL 70300 C Tenable Network Security, Inc. The descriptive text and package checks in this plugin were extracted from Debian Security Advisory DSA-1389...
CVE-2007-3905
CVE-2007-3905 concerns the web-based photo management system zoph , where the vulnerability arises from insufficient input sanitising that permits SQL injection. Debian and OpenVAS advisories (DSA-1389-1/2) confirm a remote SQL injection flaw in zoph, with fixed releases including 0.3.3-12sarge3 ...