Minddezign Photo Gallery vulnerabilities
3 known vulnerabilities affecting minddezign/photo_gallery.
Total CVEs
3
CISA KEV
0
Public exploits
3
Exploited in wild
0
Severity breakdown
MEDIUM3
Vulnerabilities
Page 1 of 1
CVE-2008-6790P4MEDIUMCVSS 5.1PoCv2.22009-05-04
CVE-2008-6790 [MEDIUM] CWE-20 CVE-2008-6790: The admin module in MindDezign Photo Gallery 2.2 allows remote attackers to add administrative users
The admin module in MindDezign Photo Gallery 2.2 allows remote attackers to add administrative users and gain privileges via a modified username parameter in an edit account action to index.php.
nvd
CVE-2008-6789P4MEDIUMCVSS 5.1PoCv2.22009-05-04
CVE-2008-6789 [MEDIUM] CVE-2008-6789: SQL injection vulnerability in MindDezign Photo Gallery 2.2 allows remote attackers to execute arbit
SQL injection vulnerability in MindDezign Photo Gallery 2.2 allows remote attackers to execute arbitrary SQL commands via the username parameter in a login action to the admin module in index.php, a different vector than CVE-2008-6788.
nvd
CVE-2008-6788P4MEDIUMCVSS 5.1PoCv2.22009-05-04
CVE-2008-6788 [MEDIUM] CWE-89 CVE-2008-6788: SQL injection vulnerability in MindDezign Photo Gallery 2.2, when magic_quotes_gpc is disabled, allo
SQL injection vulnerability in MindDezign Photo Gallery 2.2, when magic_quotes_gpc is disabled, allows remote attackers to execute arbitrary SQL commands via the id parameter in an info action to index.php.
nvd