2 matches found
CVE-2010-1300
The CVE-2010-1300 entry documents a SQL injection in Yamamah (aka Dove Photo Album) 1.00, exploitable via the calbums parameter in index.php. The underlying issue is improper handling of user-supplied input, allowing an attacker to inject arbitrary SQL commands. Impact as described aligns with pa...
CVE-2010-1300
SQL injection vulnerability in index.php in Yamamah aka Dove Photo Album 1.00 allows remote attackers to execute arbitrary SQL commands via the calbums parameter...