PhotoPost Showgallery.php SQL Injection Network Vulnerability

Summary

The remote version of PhotoPost PHP contains a vulnerability in the file 'showgallery.php' which allows a remote attacker to cause the program to execute arbitrary SQL statements against the remote database.

Solution

Upgrade to the newest version of this software.

References

http://www.gulftech.org/?node=research&article_id=00063-01032005

Updated on 2015-03-25

Severity

Classification

CVE CVE-2005-0273, CVE-2005-0274

CVSS	Base Score: 7.5 AV:N/AC:L/Au:N/C:P/I:P/A:P

Related Vulnerabilities

Baby Gekko CMS Multiple Vulnerabilities
Apache Struts2 Showcase Arbitrary Java Method Execution vulnerability
Andy's PHP Knowledgebase 'step5.php' Remote PHP Code Execution Vulnerability
Andy's PHP Knowledgebase 's' Parameter SQL Injection Vulnerability
Acidcat CMS Multiple Vulnerabilities

PhotoPost showgallery.php SQL Injection

Take action and discover your vulnerabilities