Lucene search
K
Catalog
Vendors
Products
Timeline
Vulnerabilities
Sources
Documentation
Blog
Glossary
FAQ
Brand assets
Assessment
Agents dashboard
Agent Scanning
API Scanning
Assessment API
Alerts
Email notifications
Webhook notifications
Alerts API
SBOM package analysis
API Reference
Support
Settings
Sign in
AvailscriptAvailscript Photo Album

2 matches found

CVE
CVEadded 2008/10/01 3:0 p.m.52 views

CVE-2008-4369

CVE-2008-4369 corresponds to a SQL injection vulnerability in the Availscript Photo Album’s pics.php. The vulnerability is triggered via the sid parameter, allowing remote attackers to execute arbitrary SQL commands. The NVD entry lists the impact as Partial confidentiality, integrity, and availa...

7.5CVSS8.4AI score0.00414EPSS
CVE
CVEadded 2008/10/01 3:0 p.m.48 views

CVE-2008-4370

CVE-2008-4370 describes multiple cross-site scripting (XSS) vulnerabilities in the Availscript Photo Album. According to the provided documents, an attacker can inject arbitrary web script or HTML through the (1) sid parameter to pics.php and (2) the a parameter to view.php. The affected product ...

4.3CVSS5.8AI score0.0313EPSS