Vulnerability Details CVE-2008-6647
SQL injection vulnerability in gallery.php in Ktools PhotoStore 3.4.3 allows remote attackers to execute arbitrary SQL commands via the gid parameter.
Exploit prediction scoring system (EPSS) score
EPSS Score 0.006
EPSS Ranking 67.4%
CVSS Severity
CVSS v2 Score 7.5
References
- http://osvdb.org/45140
- http://secunia.com/advisories/30194
- http://www.securityfocus.com/bid/29132
- https://exchange.xforce.ibmcloud.com/vulnerabilities/42318
- https://www.exploit-db.com/exploits/5580
- http://osvdb.org/45140
- http://secunia.com/advisories/30194
- http://www.securityfocus.com/bid/29132
- https://exchange.xforce.ibmcloud.com/vulnerabilities/42318
- https://www.exploit-db.com/exploits/5580
Products affected by CVE-2008-6647
-
cpe:2.3:a:ktools:photostore:3.4.3