Vulnerability Details CVE-2005-0377
SQL injection vulnerability in imageview.php for SGallery 1.01 allows remote attackers to execute arbitrary SQL commands via the (1) idalbum or (2) idimage parameters.
Exploit prediction scoring system (EPSS) score
EPSS Score 0.01
EPSS Ranking 75.6%
CVSS Severity
CVSS v2 Score 7.5
References
- http://lists.grok.org.uk/pipermail/full-disclosure/2005-January/030844.html
- http://marc.info/?l=bugtraq&m=110557050700947&w=2
- http://secunia.com/advisories/13824
- http://securitytracker.com/id?1012868
- http://www.securityfocus.com/bid/12249
- http://www.waraxe.us/advisory-39.html
- https://exchange.xforce.ibmcloud.com/vulnerabilities/18876
- http://lists.grok.org.uk/pipermail/full-disclosure/2005-January/030844.html
- http://marc.info/?l=bugtraq&m=110557050700947&w=2
- http://secunia.com/advisories/13824
- http://securitytracker.com/id?1012868
- http://www.securityfocus.com/bid/12249
- http://www.waraxe.us/advisory-39.html
- https://exchange.xforce.ibmcloud.com/vulnerabilities/18876
Products affected by CVE-2005-0377
-
cpe:2.3:a:sergey_kiselev:sgallery:1.01