2 matches found
CVE-2010-2714
TCW PHP Album 1.0 is affected by an SQL injection in the photos/index.php handler, exploitable via the album parameter. Root cause: improper input handling on the album parameter leads to arbitrary SQL execution. Impact: remote attackers can run arbitrary SQL commands (no authentication required ...
CVE-2010-2714
creationtimestamp| type| source ---|---|--- 2010-07-04 00:00:00+00:00| confirmed| https://www.exploit-db.com/exploits/14203...