3 matches found
CVE-2009-4566
SQL injection vulnerability in index.php in Zenphoto 1.2.5 allows remote attackers to execute arbitrary SQL commands via the title parameter in a news action. NOTE: the provenance of this information is unknown; the details are obtained solely from third party information...
CVE-2009-4566
SQL injection vulnerability in index.php in Zenphoto 1.2.5 allows remote attackers to execute arbitrary SQL commands via the title parameter in a news action. NOTE: the provenance of this information is unknown; the details are obtained solely from third party information...
CVE-2009-4566
The CVE-2009-4566 entry relates to Zenphoto 1.2.5, where the vulnerability lies in index.php’s news action. The issue is a SQL injection via the title parameter, enabling remote attackers to execute arbitrary SQL commands. The affected component is the web application’s handling of the title fiel...