RSS   Vulnerabilities for 'Xtremeasp photogallery'   RSS

2007-01-16
 
CVE-2006-6937

CWE-Other
 

 
SQL injection vulnerability in displaypic.asp in Xtreme ASP Photo Gallery allows remote attackers to inject arbitrary SQL commands via the sortorder parameter.

 
 
CVE-2006-6936

CWE-Other
 

 
Cross-site scripting (XSS) vulnerability in Xtreme ASP Photo Gallery allows remote attackers to inject arbitrary HTML or web script via (1) the catname parameter to displaypic.asp or (2) the search field. NOTE: vector 1 likely overlaps CVE-2006-3032.

 
2004-12-31
 
CVE-2004-2746

CWE-89
 

 
SQL injection vulnerability in adminlogin.asp in XTREME ASP Photo Gallery 2.0 allows remote attackers to execute arbitrary SQL commands via the (1) username and (2) password parameters.

 

 >>> Vendor: Pensacola web designs 2 Products
Xtremeasp photogallery
Xtreme asp photo gallery


Copyright 2024, cxsecurity.com

 

Back to Top