SQL injection vulnerability in gallery.php in Easy Photo Gallery (aka Ezphotogallery) 2.1 allows remote attackers to execute arbitrary SQL commands via the username parameter.
References
Configurations
History
No history.
Information
Published : 2009-08-19 05:24
Updated : 2024-02-28 11:21
NVD link : CVE-2008-6989
Mitre link : CVE-2008-6989
CVE.ORG link : CVE-2008-6989
JSON object : View
Products Affected
ezphotogallery
- ezphotogallery
CWE
CWE-89
Improper Neutralization of Special Elements used in an SQL Command ('SQL Injection')