Web-Album Webalbum vulnerabilities
2 known vulnerabilities affecting web-album/webalbum.
Total CVEs
2
CISA KEV
0
Public exploits
1
Exploited in wild
0
Severity breakdown
HIGH1MEDIUM1
Vulnerabilities
Page 1 of 1
CVE-2009-0446P3HIGHCVSS 7.5PoCv2.4b2009-02-10
CVE-2009-0446 [HIGH] CWE-89 CVE-2009-0446: SQL injection vulnerability in photo.php in WEBalbum 2.4b allows remote attackers to execute arbitra
SQL injection vulnerability in photo.php in WEBalbum 2.4b allows remote attackers to execute arbitrary SQL commands via the id parameter.
nvd
CVE-2008-2698P4MEDIUMCVSS 4.3v2.02008-06-13
CVE-2008-2698 [MEDIUM] CWE-79 CVE-2008-2698: Multiple cross-site scripting (XSS) vulnerabilities in photo_add-c.php (aka the "add comment" sectio
Multiple cross-site scripting (XSS) vulnerabilities in photo_add-c.php (aka the "add comment" section) in WEBalbum 2.0 and earlier allow remote attackers to inject arbitrary web script or HTML via the (1) comment, (2) id, or (3) category parameter.
nvd