Vulnerabilities > Ben3W
| DATE | CVE | VULNERABILITY TITLE | RISK |
|---|---|---|---|
| 2006-10-25 | CVE-2006-5505 | Remote File Include vulnerability in Ben3W 2Bgal 3.0 Multiple PHP file inclusion vulnerabilities in 2BGal 3.0 allow remote attackers to execute arbitrary PHP code via the lang parameter to (1) admin/configuration.inc.php, (2) admin/creer_album.inc.php, (3) admin/changepwd.php.inc, and unspecified other files. | 7.5 |
| 2004-12-31 | CVE-2004-1415 | Remote SQL Injection vulnerability in 2Bgal 2.4/2.5.1 SQL injection vulnerability in (1) disp_album.php and possibly (2) disp_img.php in 2Bgal 2.4 and 2.5.1 allows remote attackers to execute arbitrary SQL commands via the id_album parameter. | 5.0 |