108 matches found
PHPWebGallery 1.7.2 - Session Hijacking / Code Execution
$b'.$sort.';' 64. ; An attacker could be able to inject and execute PHP code through $GET'sort', that is passed to createfunction at line 63 see https://www.securityfocus.com/bid/31398. Only admin can access to the plugins management interface, but the attacker might be able to retrieve a valid...
PHPWebGallery 1.7.2 - Session Hijacking Code Execution
PHPWebGallery 1.7.2 - Session Hijacking Code Execution $b'.$sort.';' 64. ; An attacker could be able to inject and execute PHP code through $GET'sort', that is passed to createfunction at line 63 see https://www.securityfocus.com/bid/31398. Only admin can access to the plugins management interfac...
PhpWebGallery 1.3.4 Remote Blind SQL Injection Exploit
No description provided by source. !/usr/bin/perl -W PhpWebGallery 1.3.4 Blind SQL Injection Exploit Download: http://puzzle.dl.sourceforge.net/sourceforge/phpwebgallery/phpwebgallery-1.3.4.tar.bz2 File affected: picture.php exploit written by ka0x ka0x01 at gmail dot com D.O.M Labs - Security...
PhpWebGallery 1.3.4 Multiple Vulnerabilities (XSS/LFI)
---------------------------------------------------------------- Script : PhpWebGallery 1.3.4 Type : Multiple Vulnerabilities XSS/LFI Rist : High Google Dork : inurl:"picture.php?cat=" "Powered by PhpWebGallery 1.3.4" ---------------------------------------------------------------- Download From ...
PhpWebGallery 1.3.4 (XSS/LFI) Multiple Vulnerabilities
No description provided by source. ---------------------------------------------------------------- Script : PhpWebGallery 1.3.4 Type : Multiple Vulnerabilities XSS/LFI Rist : High Google Dork : inurl:"picture.php?cat=" "Powered by PhpWebGallery 1.3.4"...
phpwebgallery-sql.txt
---------------------------------------------------------------- Script : PhpWebGallery 1.3.4 Type : Vulnerabilities blind sql injection Author : Stack Google Dork : inurl:"picture.php?cat=" "Powered by PhpWebGallery 1.3.4" ---------------------------------------------------------------- Download...
PhpWebGallery 1.3.4 Remote Blind SQL Injection Exploit
Exploit for unknown platform in category web applications ====================================================== PhpWebGallery 1.3.4 Remote Blind SQL Injection Exploit ====================================================== !/usr/bin/perl -W PhpWebGallery 1.3.4 Blind SQL Injection Exploit Download...
PHPWebGallery 1.3.4 - Blind SQL Injection (2)
PHPWebGallery 1.3.4 - Blind SQL Injection 2 !/usr/bin/perl -W PhpWebGallery 1.3.4 Blind SQL Injection Exploit Download: http://puzzle.dl.sourceforge.net/sourceforge/phpwebgallery/phpwebgallery-1.3.4.tar.bz2 File affected: picture.php exploit written by ka0x D.O.M Labs - Security Researchers -...
phpwebgallery134-sql.txt
!/usr/bin/perl -W PhpWebGallery 1.3.4 Blind SQL Injection Exploit Download: http://puzzle.dl.sourceforge.net/sourceforge/phpwebgallery/phpwebgallery-1.3.4.tar.bz2 File affected: picture.php exploit written by ka0x D.O.M Labs - Security Researchers - www.domlabs.org - ka0x@domlabs:/codes$...
PhpWebGallery 1.3.4 (cat) Blind SQL Injection Vulnerability
No description provided by source. ---------------------------------------------------------------- Script : PhpWebGallery 1.3.4 Type : Vulnerabilities blind sql injection Author : Stack Google Dork : inurl:"picture.php?cat=" "Powered by PhpWebGallery 1.3.4"...
PHPWebGallery 1.3.4 - Blind SQL Injection (2)
!/usr/bin/perl -W PhpWebGallery 1.3.4 Blind SQL Injection Exploit Download: http://puzzle.dl.sourceforge.net/sourceforge/phpwebgallery/phpwebgallery-1.3.4.tar.bz2 File affected: picture.php exploit written by ka0x D.O.M Labs - Security Researchers - www.domlabs.org - ka0x@domlabs:/codes$...
PHPWebGallery 1.3.4 - Cross-Site Scripting Local File Inclusion
PHPWebGallery 1.3.4 - Cross-Site Scripting Local File Inclusion ---------------------------------------------------------------- Script : PhpWebGallery 1.3.4 Type : Multiple Vulnerabilities XSS/LFI Rist : High Google Dork : inurl:"picture.php?cat=" "Powered by PhpWebGallery 1.3.4"...
PhpWebGallery 1.3.4 (XSS/LFI) Multiple Vulnerabilities
Exploit for unknown platform in category web applications ====================================================== PhpWebGallery 1.3.4 XSS/LFI Multiple Vulnerabilities ====================================================== ---------------------------------------------------------------- Script :...
PhpWebGallery 1.3.4 (cat) Blind SQL Injection Vulnerability
Exploit for unknown platform in category web applications =========================================================== PhpWebGallery 1.3.4 cat Blind SQL Injection Vulnerability ===========================================================...
PHPWebGallery 1.3.4 - Blind SQL Injection (1)
---------------------------------------------------------------- Script : PhpWebGallery 1.3.4 Type : Vulnerabilities blind sql injection Author : Stack Google Dork : inurl:"picture.php?cat=" "Powered by PhpWebGallery 1.3.4" ---------------------------------------------------------------- Download...
PHPWebGallery 1.3.4 - Cross-Site Scripting / Local File Inclusion
---------------------------------------------------------------- Script : PhpWebGallery 1.3.4 Type : Multiple Vulnerabilities XSS/LFI Rist : High Google Dork : inurl:"picture.php?cat=" "Powered by PhpWebGallery 1.3.4" ---------------------------------------------------------------- Download From ...
PHPWebGallery 1.3.4 - Blind SQL Injection (1)
PHPWebGallery 1.3.4 - Blind SQL Injection 1 ---------------------------------------------------------------- Script : PhpWebGallery 1.3.4 Type : Vulnerabilities blind sql injection Author : Stack Google Dork : inurl:"picture.php?cat=" "Powered by PhpWebGallery 1.3.4"...
phpwebgallery-xsslfi.txt
---------------------------------------------------------------- Script : PhpWebGallery 1.3.4 Type : Multiple Vulnerabilities XSS/LFI Rist : High Google Dork : inurl:"picture.php?cat=" "Powered by PhpWebGallery 1.3.4" ---------------------------------------------------------------- Download From ...
Code injection
PhpWebGallery 1.7.0 and 1.7.1 allows remote authenticated users with advisor privileges to obtain the real e-mail addresses of other users by editing the user's profile...
CVE-2008-3451
PhpWebGallery 1.7.0 and 1.7.1 allows remote authenticated users with advisor privileges to obtain the real e-mail addresses of other users by editing the user's profile...