Nitropowered Nitro Web Gallery vulnerabilities
2 known vulnerabilities affecting nitropowered/nitro_web_gallery.
Total CVEs
2
CISA KEV
0
Public exploits
2
Exploited in wild
0
Severity breakdown
HIGH2
Vulnerabilities
Page 1 of 1
CVE-2010-2141P3HIGHCVSS 7.5PoCv1.3v1.4+4 more2010-06-02
CVE-2010-2141 [HIGH] CWE-89 CVE-2010-2141: SQL injection vulnerability in index.php in NITRO Web Gallery allows remote attackers to execute arb
SQL injection vulnerability in index.php in NITRO Web Gallery allows remote attackers to execute arbitrary SQL commands via the PictureId parameter in an open action.
nvd
CVE-2008-2817P3HIGHCVSS 7.5PoC≤ 1.4.32008-06-23
CVE-2008-2817 [HIGH] CWE-89 CVE-2008-2817: SQL injection vulnerability in albums.php in NiTrO Web Gallery 1.4.3 and earlier allows remote attac
SQL injection vulnerability in albums.php in NiTrO Web Gallery 1.4.3 and earlier allows remote attackers to execute arbitrary SQL commands via the CatId parameter in a show action.
nvd