Photopost Php Pro@3.1 Security Vulnerabilities and Issues — Photopost Php Pro@3.1 CVE List

Lucene search

PhotopostPhotopost Php Pro3.1

5 matches found

CVE•added 2004/11/23 5:0 a.m.•45 views

CVE-2004-0239

SQL injection vulnerability in showphoto.php in PhotoPost PHP Pro 4.6 and earlier allows remote attackers to gain unauthorized access via the photo variable.

10CVSS7.9AI score0.0038EPSS

CVE•added 2005/05/10 4:0 a.m.•37 views

CVE-2004-1871

Multiple cross-site scripting (XSS) vulnerabilities in PhotoPost PHP Pro 4.6.x and earlier allow remote attackers to inject arbitrary web script or HTML via the (1) ppuser, (2) password, (3) stype, (4) perpage, (5) sort, (6) page, (7) si, or (8) cat parameters to showmembers.php, or the (9) photo n...

4.3CVSS5.9AI score0.10675EPSS

CVE•added 2005/05/17 4:0 a.m.•37 views

CVE-2005-1629

SQL injection vulnerability in member.php for Photopost PHP Pro allows remote attackers to execute arbitrary SQL commands via the verifykey parameter.

7.5CVSS8.5AI score0.0029EPSS

CVE•added 2005/05/10 4:0 a.m.•33 views

CVE-2004-1870

Multiple SQL injection vulnerabilities in PhotoPost PHP Pro 4.6.x and earlier allow remote attackers to gain users' passwords via the (1) photo parameter to addfav.php, (2) photo parameter to comments.php, (3) credit parameter to comments.php, (4) cat parameter to index.php, (5) ppuser parameter to...

7.5CVSS8.1AI score0.0078EPSS

CVE•added 2004/11/23 5:0 a.m.•31 views

CVE-2004-0250

SQL injection vulnerability in PhotoPost PHP Pro 4.6 and earlier allows remote attackers to gain privileges via (1) the product parameter in showproduct.php or (2) the cat parameter in showcat.php.

10CVSS8.4AI score0.00861EPSS