2 matches found
CVE-2009-4731
CVE-2009-4731 is a SQL injection vulnerability affecting the Photos.php component of Model Agency Manager PRO (previously Modeling Agency Content Management Script). The underlying issue is improper handling of the album parameter, allowing remote attackers to manipulate SQL queries and potential...
CVE-2009-3175
Model Agency Manager PRO (formerly Modeling Agency Content Management Script) has multiple SQL injection vulnerabilities. The flaws allow remote attackers to execute arbitrary SQL via the user_id parameter to view.php, photos.php, and motm.php, and via the id parameter to forum_message.php. Root ...