WEB APPLICATION VULNERABILITIES Standard & Premium

Zenphoto Improper Neutralization of Special Elements used in an SQL Command ('SQL Injection') Vulnerability (CVE-2015-5591)

Description

SQL injection vulnerability in Zenphoto before 1.4.9 allow remote administrators to execute arbitrary SQL commands.

Remediation

References

Related Vulnerabilities

Joomla Improper Neutralization of Special Elements used in an SQL Command ('SQL Injection') Vulnerability (CVE-2010-4166)

WordPress Plugin Arigato Autoresponder and Newsletter Multiple Unspecified Vulnerabilities (2.4.2)

Cherokee NULL Pointer Dereference Vulnerability (CVE-2020-12845)

WordPress Plugin RESPONSIVE 3D SLIDER SQL Injection (1.2)

Oracle Database Server CVE-2008-0340 Vulnerability (CVE-2008-0340)

Severity

High

Classification

CVE-2015-5591 CWE-138 CVSS:3.1/AV:N/AC:L/PR:H/UI:N/S:U/C:H/I:H/A:H

Tags

Missing Update Known Vulnerabilities