5 matches found
CVE-2019-25522
XooGallery Latest contains multiple SQL injection vulnerabilities that allow unauthenticated attackers to manipulate database queries by injecting SQL code through the photoid parameter. Attackers can send GET requests to photo.php with malicious photoid values to extract sensitive data, bypass...
CVE-2019-25522
CVE-2019-25522 affects XooGallery Latest, where the vulnerability is an unauthenticated SQL injection in the photo_id parameter passed to photo.php. The root cause is unsafely constructed SQL queries via the photo_id input, enabling attackers to manipulate database queries and potentially extract...
CVE-2019-25522 XooGallery Lastest Latest Multiple SQL Injections via photo.php
XooGallery Latest contains multiple SQL injection vulnerabilities that allow unauthenticated attackers to manipulate database queries by injecting SQL code through the photoid parameter. Attackers can send GET requests to photo.php with malicious photoid values to extract sensitive data, bypass...
Joomla! Component JE Gallery 1.3 - photo_id SQL Injection
Joomla! Component JE Gallery 1.3 - photoid SQL Injection Exploit Title: Joomla! Component JE Gallery v1.3 - SQL Injection Google Dork: inurl:index.php?option=comjegallery Date: 13.02.2017 Vendor Homepage: http://www.joomlaextension.biz/ Software Buy:...
Joomla! Component JE Gallery 1.3 - 'photo_id' SQL Injection
Exploit Title: Joomla! Component JE Gallery v1.3 - SQL Injection Google Dork: inurl:index.php?option=comjegallery Date: 13.02.2017 Vendor Homepage: http://www.joomlaextension.biz/ Software Buy: https://extensions.joomla.org/extensions/extension/photos-a-images/galleries/je-gallery/ Demo:...