Vulnerability Details CVE-2008-6788
SQL injection vulnerability in MindDezign Photo Gallery 2.2, when magic_quotes_gpc is disabled, allows remote attackers to execute arbitrary SQL commands via the id parameter in an info action to index.php.
Exploit prediction scoring system (EPSS) score
EPSS Score 0.002
EPSS Ranking 43.7%
CVSS Severity
CVSS v2 Score 5.1
References
- http://osvdb.org/49266
- http://secunia.com/advisories/32358
- http://www.securityfocus.com/bid/31893
- https://exchange.xforce.ibmcloud.com/vulnerabilities/46075
- https://www.exploit-db.com/exploits/6819
- http://osvdb.org/49266
- http://secunia.com/advisories/32358
- http://www.securityfocus.com/bid/31893
- https://exchange.xforce.ibmcloud.com/vulnerabilities/46075
- https://www.exploit-db.com/exploits/6819
Products affected by CVE-2008-6788
-
cpe:2.3:a:minddezign:photo_gallery:2.2