RSS   Vulnerabilities for 'Picturedis photoalbum'   RSS

2006-06-19
 
CVE-2006-3075

CWE-Other
 

 
Multiple PHP remote file inclusion vulnerabilities in PictureDis Professional 1.33 Build 234 and earlier and PictureDis Photoalbum 4.82 and earlier allow remote attackers to execute arbitrary PHP code via a URL in the lang parameter to files in photoalbum/ including (1) thumstbl.php, (2) wpfiles.php, and (3) wallpapr.php.

 

 >>> Vendor: Picturedis 2 Products
Picturedis photoalbum
Picturedis professional


Copyright 2024, cxsecurity.com

 

Back to Top