Описание
SQL injection vulnerability in gallery.asp in Absolute Image Gallery 2.0 allows remote attackers to execute arbitrary SQL commands via the categoryid parameter in a viewimage action.
SQL injection vulnerability in gallery.asp in Absolute Image Gallery 2.0 allows remote attackers to execute arbitrary SQL commands via the categoryid parameter in a viewimage action.
Ссылки
- https://nvd.nist.gov/vuln/detail/CVE-2007-1469
- https://exchange.xforce.ibmcloud.com/vulnerabilities/33005
- http://secunia.com/advisories/24543
- http://securityreason.com/securityalert/2429
- http://www.osvdb.org/34239
- http://www.securityfocus.com/archive/1/462971/100/0/threaded
- http://www.securityfocus.com/bid/22988
- http://www.vupen.com/english/advisories/2007/1002
Связанные уязвимости
nvd
почти 19 лет назад
SQL injection vulnerability in gallery.asp in Absolute Image Gallery 2.0 allows remote attackers to execute arbitrary SQL commands via the categoryid parameter in a viewimage action.