Lucene search
+L

13 matches found

prion
prion
added 2009/08/19 5:24 a.m.14 views

Cross site scripting

Multiple cross-site scripting XSS vulnerabilities in Easy Photo Gallery aka Ezphotogallery 2.1 allow remote attackers to inject arbitrary web script or HTML via the 1 galleryid parameter to gallery.php, and the 2 size or 3 imageid parameters to show.php...

4.3CVSS6.1AI score0.01862EPSS
Exploits0References7Affected Software1
cve
cve
added 2009/08/18 10:0 a.m.46 views

CVE-2008-6990

The CVE-2008-6990 entry concerns Easy Photo Gallery (aka Ezphotogallery) 2.1, where a SQL injection flaw exists in gallery.php. The vulnerability allows remote attackers to inject and execute arbitrary SQL commands through the password parameter. This is based on multiple connected sources (NVD, ...

7.5CVSS8.5AI score0.01032EPSS
Exploits0References2Affected Software1
cve
cve
added 2009/08/18 10:0 a.m.48 views

CVE-2008-6988

CVE-2008-6988 concerns Easy Photo Gallery (Ezphotogallery) 2.1 with multiple XSS vulnerabilities. The affected component is the web application’s dynamic pages, specifically gallery.php and show.php, where user-supplied parameters (galleryid on gallery.php; size or imageid on show.php) can be man...

4.3CVSS5.9AI score0.01862EPSS
Exploits0References7Affected Software1
prion
prion
added 2008/09/22 6:34 p.m.13 views

Authentication flaw

useradmin.php in Easy Photo Gallery aka Ezphotogallery 2.1 does not require administrative authentication, which allows remote attackers to 1 add or 2 remove an Administrator account...

6.4CVSS7.3AI score0.02606EPSS
Exploits0References5Affected Software1
cve
cve
added 2008/09/22 6:0 p.m.34 views

CVE-2008-4167

CVE-2008-4167 affects Easy Photo Gallery (Ezphotogallery) 2.1. The issue: useradmin.php does not require administrative authentication, allowing remote attackers to (1) add or (2) remove an Administrator account. The root cause, per the description, is a lack of authentication for admin account m...

6.4CVSS6.7AI score0.02606EPSS
Exploits0References5Affected Software1
packetstorm
packetstorm
added 2008/09/12 12:0 a.m.19 views

ezphotogallery-admin.txt

---------------------------------------------------------------- Script : Ezphotogallery 2.1 Type : Vulnerabilities Add Admin user/Remove user Google Dork : "100% | 50% | 25%" "Back to gallery" inurl:"show.php?imageid=" ---------------------------------------------------------------- Discovered b...

7.4AI score
Exploits0
seebug
seebug
added 2008/09/12 12:0 a.m.19 views

Easy Photo Gallery 2.1 Arbitrary Add Admin / remove user Vulnerability

No description provided by source. ---------------------------------------------------------------- Script : Ezphotogallery 2.1 Type : Vulnerabilities Add Admin user/Remove user Google Dork : "100% | 50% | 25%" "Back to gallery" inurl:"show.php?imageid="...

7.1AI score
Exploits0
zdt
zdt
added 2008/09/11 12:0 a.m.28 views

Easy Photo Gallery 2.1 XSS/FD/Bypass/SQL Injection Exploit

Exploit for unknown platform in category web applications ========================================================== Easy Photo Gallery 2.1 XSS/FD/Bypass/SQL Injection Exploit ========================================================== !/usr/bin/perl...

7.1AI score
Exploits0
exploitdb
exploitdb
added 2008/09/11 12:0 a.m.51 views

Easy Photo Gallery 2.1 - Cross-Site Scripting / File Disclosure/Bypass / SQL Injection

!/usr/bin/perl ---------------------------------------------------------------- Script : Ezphotogallery 2.1 Type : Multiple Vulnerabilities Xss/Login Bypass/Sql injection Exploit/File Disclosure Method : GET Alert : High Google Dork : "100% | 50% | 25%" "Back to gallery" inurl:"show.php?imageid="...

7.4AI score
Exploits0
exploitdb
exploitdb
added 2008/09/11 12:0 a.m.33 views

Easy Photo Gallery 2.1 - Arbitrary Add Admin / remove user

---------------------------------------------------------------- Script : Ezphotogallery 2.1 Type : Vulnerabilities Add Admin user/Remove user Google Dork : "100% | 50% | 25%" "Back to gallery" inurl:"show.php?imageid=" ---------------------------------------------------------------- Discovered b...

7.4AI score
Exploits0
exploitpack
exploitpack
added 2008/09/11 12:0 a.m.26 views

Easy Photo Gallery 2.1 - Cross-Site Scripting File DisclosureBypass SQL Injection

Easy Photo Gallery 2.1 - Cross-Site Scripting File DisclosureBypass SQL Injection !/usr/bin/perl ---------------------------------------------------------------- Script : Ezphotogallery 2.1 Type : Multiple Vulnerabilities Xss/Login Bypass/Sql injection Exploit/File Disclosure Method : GET Alert :...

0.6AI score
Exploits0
zdt
zdt
added 2008/09/11 12:0 a.m.16 views

Easy Photo Gallery 2.1 Arbitrary Add Admin / remove user Vulnerability

Exploit for unknown platform in category web applications ====================================================================== Easy Photo Gallery 2.1 Arbitrary Add Admin / remove user Vulnerability ======================================================================...

7.1AI score
Exploits0
exploitpack
exploitpack
added 2008/09/11 12:0 a.m.17 views

Easy Photo Gallery 2.1 - Arbitrary Add Admin remove user

Easy Photo Gallery 2.1 - Arbitrary Add Admin remove user ---------------------------------------------------------------- Script : Ezphotogallery 2.1 Type : Vulnerabilities Add Admin user/Remove user Google Dork : "100% | 50% | 25%" "Back to gallery" inurl:"show.php?imageid="...

0.3AI score
Exploits0
Rows per page
Query Builder