Vulnerabilities > Atomic Photo Album
DATE | CVE | VULNERABILITY TITLE | RISK |
---|---|---|---|
2008-10-23 | CVE-2008-4714 | Improper Authentication vulnerability in Atomic Photo Album Atomic Photo Album 1.1.0 Atomic Photo Album 1.1.0 pre4 does not properly handle the apa_cookie_login and apa_cookie_password cookies, which probably allows remote attackers to bypass authentication and gain administrative access via modified cookies. | 7.5 |
2008-09-30 | CVE-2008-4335 | SQL Injection vulnerability in Atomic Photo Album Atomic Photo Album 1.1.0Pre4 SQL injection vulnerability in album.php in Atomic Photo Album (APA) 1.1.0pre4 allows remote attackers to execute arbitrary SQL commands via the apa_album_ID parameter. | 7.5 |
2005-08-03 | CVE-2005-2413 | Remote File Include vulnerability in Atomic Photo Album Apa_PHPInclude.INC.PHP PHP remote file inclusion vulnerability in apa_phpinclude.inc.php in Atomic Photo Album (APA) allows remote attackers to execute arbitrary PHP code via the apa_module_basedir parameter. | 5.0 |