3 matches found
EUVD-2015-5549
Malware in sbrugna...
Zenphoto 1.4.2 RCE
Remote command execution vulnerability in ZENPhoto viewersizeimage.php Vulnerability Type: Remote Command Execution For the exploit source code contact DSquare Security sales team...
CVE-2007-0616
CVE-2007-0616 affects zenphoto versions 1.0.4 up to 1.0.6, via zen/template-functions.php. The vulnerability is a directory traversal in index.php where the album parameter can contain ".." sequences, enabling remote attackers to list arbitrary directories. Root cause: inadequate validation of th...