Vulnerability Details CVE-2007-3411
SQL injection vulnerability in edit_image.asp in ClickGallery Server 5.1 and earlier allows remote attackers to execute arbitrary SQL commands via the image_id parameter.
Exploit prediction scoring system (EPSS) score
EPSS Score 0.004
EPSS Ranking 59.7%
CVSS Severity
CVSS v2 Score 7.5
References
- http://osvdb.org/36370
- http://pridels-team.blogspot.com/2007/06/clickgallery-server-vuln.html
- http://secunia.com/advisories/25805
- https://exchange.xforce.ibmcloud.com/vulnerabilities/35023
- http://osvdb.org/36370
- http://pridels-team.blogspot.com/2007/06/clickgallery-server-vuln.html
- http://secunia.com/advisories/25805
- https://exchange.xforce.ibmcloud.com/vulnerabilities/35023
Products affected by CVE-2007-3411
-
cpe:2.3:a:clicktech:clickgallery:*
-
cpe:2.3:a:clicktech:clickgallery:5.1