Vulnerabilities > Photokorn

DATE CVE VULNERABILITY TITLE RISK
2008-02-06 CVE-2008-0614 SQL Injection vulnerability in Photokorn Gallery 1.543
SQL injection vulnerability in index.php in Photokorn Gallery 1.543 allows remote attackers to execute arbitrary SQL commands via the pic parameter in a showpic action.
network
low complexity
photokorn CWE-89
7.5
2006-04-26 CVE-2006-2040 SQL Injection vulnerability in Photokorn 1.53/1.542
Multiple SQL injection vulnerabilities in photokorn 1.53 and 1.542 allow remote attackers to execute arbitrary SQL commands via the (1) cat, (2) pic and (3) page parameter in index.php; (4) id parameter in postcard.php; and (5) cat parameter in print.php.
network
low complexity
photokorn
6.4