CVEDB API

Vulnerabilities

By Date
Known Exploited
Advanced Search

Vulnerable Software

Vendors
Products

Atomic Photo Album: >> Atomic Photo Album Security Vulnerabilities

CVE-2008-4714

Atomic Photo Album 1.1.0 pre4 does not properly handle the apa_cookie_login and apa_cookie_password cookies, which probably allows remote attackers to bypass authentication and gain administrative access via modified cookies.

CVSS Score

7.5

EPSS Score

0.023

Published

2008-10-23

CVE-2008-4335

SQL injection vulnerability in album.php in Atomic Photo Album (APA) 1.1.0pre4 allows remote attackers to execute arbitrary SQL commands via the apa_album_ID parameter.

CVSS Score

7.5

EPSS Score

0.007

Published

2008-09-30

CVE-2005-2413

PHP remote file inclusion vulnerability in apa_phpinclude.inc.php in Atomic Photo Album (APA) allows remote attackers to execute arbitrary PHP code via the apa_module_basedir parameter.

CVSS Score

5.0

EPSS Score

0.006

Published

2005-08-03

Page 1

Vulnerabilities

Vulnerable Software

Atomic Photo Album: >> Atomic Photo Album Security Vulnerabilities

Products

Pricing

Contact Us