5 matches found
CVE-2019-25522
XooGallery Latest contains multiple SQL injection vulnerabilities that allow unauthenticated attackers to manipulate database queries by injecting SQL code through the photoid parameter. Attackers can send GET requests to photo.php with malicious photoid values to extract sensitive data, bypass...
EUVD-2008-1875
Malware in sbrugna...
CVE-2008-6348
Multiple SQL injection vulnerabilities in DevelopItEasy Photo Gallery 1.2 allow remote attackers to execute arbitrary SQL commands via the 1 catid parameter to gallerycategory.php, 2 photoid parameter to galleryphoto.php, and the 3 username and 4 userpass parameters to admin/index.php. NOTE: some...
Sql injection
SQL injection vulnerability in index.php in Terong PHP Photo Gallery aka Advanced Web Photo Gallery 1.0 allows remote attackers to execute arbitrary SQL commands via the photoid parameter...
Cline Communications Sql injection
Cline Communications Sql injection ------------------------------------- Site:http://www.celerondude.com/ Demo:http://www.liveelite.com/ --------------------------------- Sql injection 1,photoenlarged.php file PhotoID parameter 2,newsdetail.php file NID parameter 3,staffphotoenlarged.php file...