Описание
SQL injection vulnerability in index.php in RTWebalbum 1.0.462 allows remote attackers to execute arbitrary SQL commands via the AlbumId parameter.
SQL injection vulnerability in index.php in RTWebalbum 1.0.462 allows remote attackers to execute arbitrary SQL commands via the AlbumId parameter.
Ссылки
- https://nvd.nist.gov/vuln/detail/CVE-2009-1910
- https://exchange.xforce.ibmcloud.com/vulnerabilities/50406
- https://www.exploit-db.com/exploits/8648
- http://rtwebalbum.svn.sourceforge.net/viewvc/rtwebalbum
- http://rtwebalbum.svn.sourceforge.net/viewvc/rtwebalbum/index.php?view=log
- http://secunia.com/advisories/35022
- http://www.securityfocus.com/archive/1/503374/100/0/threaded
- http://www.securityfocus.com/bid/34888
Связанные уязвимости
nvd
больше 16 лет назад
SQL injection vulnerability in index.php in RTWebalbum 1.0.462 allows remote attackers to execute arbitrary SQL commands via the AlbumId parameter.