CVE-2012-2338

SQL injection vulnerability in includes/picture.class.php in Galette 0.63, 0.63.1, 0.63.2, 0.63.3, and 0.64rc1 allows remote attackers to execute arbitrary SQL commands via the idadh parameter to picture.php...

“Happy one hundred phases in the Park”photo album GETSHELL vulnerabilities-vulnerability warning-the black bar safety net

The vulnerability appears in the index.php if$do == 'upload' if$POST'formsub' $file = $FILES'upload'; if!$ file'error' ifstrpos$file'type', 'image' === 0 $hash = $POST'i'.'. jpg'; //if IIS, then here can be self-configured IIS malformed file extension to get a webshell...