Lucene search
K
Catalog
Vendors
Products
Timeline
Vulnerabilities
Sources
Documentation
Blog
Glossary
FAQ
Brand assets
Assessment
Agents dashboard
Agent Scanning
API Scanning
Assessment API
Alerts
Email notifications
Webhook notifications
Alerts API
SBOM package analysis
API Reference
Support
Settings
Sign in
🔥 Daily Hot!
💪🏽 CPE Enhanced Advisories
🕶 Shadow Exploits
🕵🏼 Vulners CPE
🔐 Security news
💻 Exploit updates
📑 Blogs review
🐧 Linux vulnerabilities
🐞 Bugbounty
🤖 AI High Score
📰 CVE Feed
show all

31 matches found

EUVD
EUVDadded 2025/10/07 12:30 a.m.2 views

EUVD-2006-3020

Malware in sbrugna...

4.3CVSS6.4AI score0.00409EPSS
Exploits0References5
EUVD
EUVDadded 2025/10/07 12:30 a.m.2 views

EUVD-2005-1431

Malware in sbrugna...

7.5CVSS6.4AI score0.00763EPSS
Exploits1References3
EUVD
EUVDadded 2025/10/07 12:30 a.m.4 views

EUVD-2006-6230

Malware in sbrugna...

7.5CVSS6.4AI score0.02318EPSS
Exploits1References7
EUVD
EUVDadded 2025/10/07 12:30 a.m.2 views

EUVD-2005-1430

Malware in sbrugna...

7.5CVSS6.4AI score0.01015EPSS
Exploits1References4
EUVD
EUVDadded 2025/10/07 12:30 a.m.2 views

EUVD-2007-0812

Malware in sbrugna...

4.3CVSS6.4AI score0.00427EPSS
Exploits0References6
seebug.org
seebug.orgadded 2014/07/01 12:0 a.m.11 views

uPhotoGallery 1.1 thumbnails.asp ci Parameter SQL Injection

No description provided by source. source: http://www.securityfocus.com/bid/21319/info uPhotoGallery is prone to multiple SQL-injection vulnerabilities because it fails to sufficiently sanitize user-supplied data before using it in an SQL query. Exploiting these issues could allow an attacker to...

7.1AI score
Exploits0
seebug.org
seebug.orgadded 2014/07/01 12:0 a.m.12 views

uPhotoGallery 1.1 slideshow.asp ci Parameter SQL Injection

No description provided by source. source: http://www.securityfocus.com/bid/21319/info uPhotoGallery is prone to multiple SQL-injection vulnerabilities because it fails to sufficiently sanitize user-supplied data before using it in an SQL query. Exploiting these issues could allow an attacker to...

7.1AI score
Exploits0
0day.today
0day.todayadded 2010/07/07 12:0 a.m.21 views

Uphotogallery Server SQL Injection Vulnerabilty

Exploit for asp platform in category web applications =============================================== Uphotogallery Server SQL Injection Vulnerabilty =============================================== 1-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=0 0 1 1 /' \ /'\ /\ \ /'\ 0 ...

7.1AI score
Exploits0
NVD
NVDadded 2007/02/07 11:28 a.m.11 views

CVE-2007-0815

Cross-site scripting XSS vulnerability in imagesarchive.asp in Uapplication Uphotogallery 1.1 allows remote authenticated administrators to inject arbitrary web script or HTML via the s parameter. NOTE: the thumbnails.asp vector is already covered by CVE-2006-3023...

4.3CVSS5.2AI score0.00427EPSS
Exploits0References5
Prion
Prionadded 2007/02/07 11:28 a.m.15 views

Cross site scripting

Cross-site scripting XSS vulnerability in imagesarchive.asp in Uapplication Uphotogallery 1.1 allows remote authenticated administrators to inject arbitrary web script or HTML via the s parameter. NOTE: the thumbnails.asp vector is already covered by CVE-2006-3023...

4.3CVSS5.6AI score0.00427EPSS
Exploits0References5Affected Software1
Cvelist
Cvelistadded 2007/02/07 11:0 a.m.15 views

CVE-2007-0815

Cross-site scripting XSS vulnerability in imagesarchive.asp in Uapplication Uphotogallery 1.1 allows remote authenticated administrators to inject arbitrary web script or HTML via the s parameter. NOTE: the thumbnails.asp vector is already covered by CVE-2006-3023...

5.2AI score0.00427EPSS
Exploits0References5
CVE
CVEadded 2007/02/07 11:0 a.m.53 views

CVE-2007-0815

CVE-2007-0815 is an XSS vulnerability in Uapplication Uphotogallery 1.1: the images_archive.asp endpoint is vulnerable to script/HTML injection via the s parameter. The vulnerability requires authenticated remote administrators. The thumbnails.asp vector is already covered by CVE-2006-3023.

4.3CVSS5.2AI score0.00427EPSS
Exploits0References5Affected Software1
securityvulns
securityvulnsadded 2007/02/06 12:0 a.m.52 views

Uphotogallery Multiple Cross-Site Scripting Vulnerability

Uphotogallery Multiple Cross-Site Scripting Vulnerability Uphotogallery has been developed to run exclusively on web sites hosted on Windows Servers with Internet Information Server 4.0 or higher and ASP 3.0 installed. No other Platforms are supported. Uphotogallery supports both Microsoft Access...

0.2AI score
Exploits0
Packet Storm
Packet Stormadded 2007/02/06 12:0 a.m.14 views

uphotogallery-xss.txt

Uphotogallery Multiple Cross-Site Scripting Vulnerability Uphotogallery has been developed to run exclusively on web sites hosted on Windows Servers with Internet Information Server 4.0 or higher and ASP 3.0 installed. No other Platforms are supported. Uphotogallery supports both Microsoft Access...

7.4AI score
Exploits0
ATTACKERKB
ATTACKERKBadded 2006/12/04 11:28 a.m.2 views

CVE-2006-6247

Multiple SQL injection vulnerabilities in Uapplication UPhotoGallery 1.1 allow remote attackers to execute arbitrary SQL commands via the ci parameter to 1 slideshow.asp or 2 thumbnails.asp...

7.5CVSS6.3AI score0.02318EPSS
Exploits1References7
NVD
NVDadded 2006/12/04 11:28 a.m.16 views

CVE-2006-6247

Multiple SQL injection vulnerabilities in Uapplication UPhotoGallery 1.1 allow remote attackers to execute arbitrary SQL commands via the ci parameter to 1 slideshow.asp or 2 thumbnails.asp...

7.5CVSS8.5AI score0.02318EPSS
Exploits1References6
CVE
CVEadded 2006/12/04 11:0 a.m.53 views

CVE-2006-6247

CVE-2006-6247 concerns multiple SQL injection vulnerabilities in Uapplication UPhotoGallery 1.1. The issue allows remote attackers to execute arbitrary SQL commands through the ci parameter to slideshow.asp or thumbnails.asp. The vulnerability is within the application’s handling of input without...

7.5CVSS8.9AI score0.02318EPSS
Exploits1References6Affected Software1
Cvelist
Cvelistadded 2006/12/04 11:0 a.m.16 views

CVE-2006-6247

Multiple SQL injection vulnerabilities in Uapplication UPhotoGallery 1.1 allow remote attackers to execute arbitrary SQL commands via the ci parameter to 1 slideshow.asp or 2 thumbnails.asp...

8.5AI score0.02318EPSS
Exploits1References6
Packet Storm
Packet Stormadded 2006/11/30 12:0 a.m.26 views

aria-uphoto.txt

Aria-Security Team Advisory ----------------------------------------------------------- Software: uPhotoGallery 1.1 Method: SQL injection PoC: http://target/slideshow.asp?imgid=290&ci=SQL Injection http://target/thumbnails.asp?ci=SQL Injection Contact: [email protected]...

7.4AI score
Exploits0
securityvulns
securityvulnsadded 2006/11/28 12:0 a.m.36 views

uPhotoGallery (v 1.1) SQL Injection

Aria-Security Team Advisory www.Aria-security.Com For English www.Aria-Security.net For Persian ----------------------------------------------------------- Software: uPhotoGallery 1.1 Method: SQL injection PoC: http://target/slideshow.asp?imgid=290&ci=SQL Injection...

2.7AI score
Exploits0
Rows per page
Query Builder