26 matches found
EUVD-2008-2496
Malware in sbrugna...
EUVD-2009-4782
Malware in sbrugna...
PHPhotoalbum 0.5 - SQL Injection Vulnerability
No description provided by source. Title: PHPhotoalbum Remote sql injection Vulnerability Tested on: windows http://server/PHPhotoalbum/thumbnails.php?album=-1+union+select+user+from+mysql.user-- http://server/PHPhotoalbum/thumbnails.php?album=-1+union+select+loadfile/directory...
PHPhotoalbum 0.5 - Multiple Remote SQL Injection Vulnerabilities
No description provided by source. Name : PHPhotoalbum v0.5 Multiple Remote SQL Injection Vulnerabilities Author : cOndemned Dork : intext:PHPhotoalbum v0.5 Greetz : ZaBeaTy, str0ke, TBH, Hawk, doctor, Sandtalker, Avantura ; Proof of Concept :...
CVE-2009-4819
Multiple unrestricted file upload vulnerabilities in upload.php in PHPhotoalbum allow remote attackers to execute arbitrary code by uploading a file with a 1 .php.pgif or 2 .php.pjpeg double extension, then accessing it via a direct request to the file in albums/userpics/...
Unrestricted file upload
Multiple unrestricted file upload vulnerabilities in upload.php in PHPhotoalbum allow remote attackers to execute arbitrary code by uploading a file with a 1 .php.pgif or 2 .php.pjpeg double extension, then accessing it via a direct request to the file in albums/userpics/...
CVE-2009-4819
CVE-2009-4819 concerns PHPhotoalbum’s upload.php where there are unrestricted file upload vulnerabilities. The issue arises from double extensions (1) .php.pgif and (2) .php.pjpeg, enabling remote attackers to upload a PHP-disguised file and then access it directly under albums/userpics/ to execu...
CVE-2009-4819
Multiple unrestricted file upload vulnerabilities in upload.php in PHPhotoalbum allow remote attackers to execute arbitrary code by uploading a file with a 1 .php.pgif or 2 .php.pjpeg double extension, then accessing it via a direct request to the file in albums/userpics/...
PHPhotoalbum v0.5 SQL Injection Vulnerability
Exploit for unknown platform in category web applications ============================================= PHPhotoalbum v0.5 SQL Injection Vulnerability ============================================= Title: PHPhotoalbum Remote sql injection Vulnerability Tested on: windows...
PHPhotoalbum v0.5 SQL Injection Vulnerability
No description provided by source. Title: PHPhotoalbum Remote sql injection Vulnerability Tested on: windows http://server/PHPhotoalbum/thumbnails.php?album=-1+union+select+user+from+mysql.user-- http://server/PHPhotoalbum/thumbnails.php?album=-1+union+select+loadfile/directory...
PHPhotoalbum Remote File Upload Vulnerability
No description provided by source. || || | || o,7 || . o7 || 4||| ow, : / / . |-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=| | | | /' \ /'\ /\ \ /'\ /\ \ | | /, \ /\/\L\ \ \ \ ,/\ /\ \ \ \ / | | //\ \ /' \ /\ //\ /'\ \ /\ \ \ \ /'\ \ | | \ \ /\ /\ \ \ \ /...
PHPhotoalbum - Arbitrary File Upload
PHPhotoalbum - Arbitrary File Upload || || | || o,7 || . o7 || 4||| ow, : / / . |-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=| | | | /' \ /'\ /\ \ /'\ /\ \ | | /, \ /\/\L\ \ \ \ ,/\ /\ \ \ \ / | | //\ \ /' \ /\ //\ team wlhaan hacker | | // | | |...
PHPhotoalbum Shell Upload
========================================================================== Script Name : PHPhotoalbum Language : php email: [email protected] ============================================================ Dork : Powered By PHPhotoalbum or inurl:"PHPhotoalbum-upload.php"...
PHPhotoalbum Remote File Upload Vulnerability
Exploit for unknown platform in category web applications ============================================= PHPhotoalbum Remote File Upload Vulnerability ============================================= 1-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=0 0 1 1 /' \ /'\ /\ \ /'\ 0 0...
PHPhotoalbum 0.5 - SQL Injection
PHPhotoalbum 0.5 - SQL Injection Title: PHPhotoalbum Remote sql injection Vulnerability Tested on: windows http://server/PHPhotoalbum/thumbnails.php?album=-1+union+select+user+from+mysql.user-- http://server/PHPhotoalbum/thumbnails.php?album=-1+union+select+loadfile/directory...
PHPhotoalbum - Arbitrary File Upload
|| || | || o,7 || . o7 || 4||| ow, : / / . |-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=| | | | /' \ /'\ /\ \ /'\ /\ \ | | /, \ /\/\L\ \ \ \ ,/\ /\ \ \ \ / | | //\ \ /' \ /\ //\ team wlhaan hacker | | // | | |...
PHPhotoalbum 0.5 - SQL Injection
Title: PHPhotoalbum Remote sql injection Vulnerability Tested on: windows http://server/PHPhotoalbum/thumbnails.php?album=-1+union+select+user+from+mysql.user-- http://server/PHPhotoalbum/thumbnails.php?album=-1+union+select+loadfile/directory hex/config.inc.php+from+mysql.user--...
CVE-2008-2501
Multiple SQL injection vulnerabilities in PHPhotoalbum 0.5 allow remote attackers to execute arbitrary SQL commands via the 1 album parameter to thumbnails.php and the 2 pid parameter to displayimage.php...
Sql injection
Multiple SQL injection vulnerabilities in PHPhotoalbum 0.5 allow remote attackers to execute arbitrary SQL commands via the 1 album parameter to thumbnails.php and the 2 pid parameter to displayimage.php...
CVE-2008-2501
PHPhotoalbum 0.5 is affected by multiple SQL injection vulnerabilities that allow remote attackers to execute arbitrary SQL commands via the (1) album parameter to thumbnails.php and (2) pid parameter to displayimage.php. The issue is documented in CVE-2008-2501 and corroborated by NVD/CVE record...