Multiple SQL injection vulnerabilities in Matteo Binda ASP Photo Gallery 1.0 allow remote attackers to execute arbitrary SQL commands via the (1) id parameter to (a) Imgbig.asp, (b) thumb.asp, and (c) thumbricerca.asp and the (2) ricerca parameter to (d) thumbricerca.asp.
Metrics
Affected Vendors & Products
References
History
No history.
MITRE
Status: PUBLISHED
Assigner: mitre
Published: 2008-01-15T19:00:00
Updated: 2024-08-07T07:39:34.908Z
Reserved: 2008-01-15T00:00:00
Link: CVE-2008-0256
Vulnrichment
No data.
NVD
Status : Modified
Published: 2008-01-15T20:00:00.000
Modified: 2024-11-21T00:41:31.073
Link: CVE-2008-0256
Redhat
No data.