EDB-4707
webappsphpVERIFIED
Ace Image Hosting Script - 'id' SQL Injection
CVE-2007-6393
t0pP8uZz12/9/2007
CVE-2007-6393
NONESQL injection vulnerability in albums.php in Ace Image Hosting Script allows remote authenticated users to execute arbitrary SQL commands via the id parameter in editalbum mode.
Опубликовано: 12/17/2007Обновлено: 4/9/2025
Описание
SQL injection vulnerability in albums.php in Ace Image Hosting Script allows remote authenticated users to execute arbitrary SQL commands via the id parameter in editalbum mode.
ИИ-АнализНа базе ИИ
Затронутые продукты
ace_image_hosting_scriptace_image_hosting_script
0
Доступные эксплойты (1)
Ссылки
- http://secunia.com/advisories/27988
- http://www.securityfocus.com/bid/26780Exploit
- http://www.vupen.com/english/advisories/2007/4176
- https://exchange.xforce.ibmcloud.com/vulnerabilities/38941
- https://www.exploit-db.com/exploits/4707
- http://secunia.com/advisories/27988
- http://www.securityfocus.com/bid/26780Exploit
- http://www.vupen.com/english/advisories/2007/4176
- https://exchange.xforce.ibmcloud.com/vulnerabilities/38941
- https://www.exploit-db.com/exploits/4707