Vulnerability Details CVE-2008-6647
SQL injection vulnerability in gallery.php in Ktools PhotoStore 3.4.3 allows remote attackers to execute arbitrary SQL commands via the gid parameter.
Exploit prediction scoring system (EPSS) score
EPSS Score 0.002
EPSS Ranking 43.7%
CVSS Severity
CVSS v2 Score 7.5
References
- http://osvdb.org/45140
- http://secunia.com/advisories/30194
- http://www.securityfocus.com/bid/29132
- https://exchange.xforce.ibmcloud.com/vulnerabilities/42318
- https://www.exploit-db.com/exploits/5580
- http://osvdb.org/45140
- http://secunia.com/advisories/30194
- http://www.securityfocus.com/bid/29132
- https://exchange.xforce.ibmcloud.com/vulnerabilities/42318
- https://www.exploit-db.com/exploits/5580
Products affected by CVE-2008-6647
-
cpe:2.3:a:ktools:photostore:3.4.3