RSS   Vulnerabilities for 'Phphotoalbum'   RSS

2008-05-29
 
CVE-2008-2501

CWE-89
 

 
Multiple SQL injection vulnerabilities in PHPhotoalbum 0.5 allow remote attackers to execute arbitrary SQL commands via the (1) album parameter to thumbnails.php and the (2) pid parameter to displayimage.php.

 


Copyright 2024, cxsecurity.com

 

Back to Top