Shodan
Vulnerabilities
Vulnerable Software
Camera Life:  Security Vulnerabilities
CVE-2008-6295
Multiple cross-site scripting (XSS) vulnerabilities in Camera Life 2.6.2b8 allow remote attackers to inject arbitrary web script or HTML via the q parameter to (1) search.php and (2) rss.php; the query string after the image name in (3) photos/photo; the path parameter to (4) folder.php; page parameter and REQUEST_URI to (5) login.php; ver parameter to (6) media.php; theme parameter to (7) modules/iconset/iconset-debug.php; and the REQUEST_URI to (8) index.php.
CVSS Score
4.3
EPSS Score
0.003
Published
2009-02-26
CVE-2008-6086
SQL injection vulnerability in album.php in Camera Life 2.6.2b4 allows remote attackers to execute arbitrary SQL commands via the id parameter, a different vector than CVE-2008-3355.
CVSS Score
7.5
EPSS Score
0.002
Published
2009-02-06
CVE-2008-6087
Cross-site scripting (XSS) vulnerability in topic.php in Camera Life 2.6.2b4 allows remote attackers to inject arbitrary web script or HTML via the name parameter.
CVSS Score
4.3
EPSS Score
0.018
Published
2009-02-06
CVE-2008-4366
Unrestricted file upload vulnerability in the image upload component in Camera Life 2.6.2b4 allows remote authenticated users to execute arbitrary code by uploading a file with an executable extension, then accessing it via a direct request to the file in a user directory under images/photos/upload.
CVSS Score
6.5
EPSS Score
0.027
Published
2008-09-30
CVE-2008-3355
SQL injection vulnerability in sitemap.xml.php in Camera Life 2.6.2 allows remote attackers to execute arbitrary SQL commands via the id parameter in a photos action.
CVSS Score
7.5
EPSS Score
0.002
Published
2008-07-28
CVE-2007-4233
Multiple unspecified vulnerabilities in Camera Life before 2.6 allow attackers to cause a denial of service via unknown vectors.
CVSS Score
4.3
EPSS Score
0.003
Published
2007-08-08
CVE-2007-4234
Unspecified vulnerability in Camera Life before 2.6 allows remote attackers to download private photos via unspecified vectors associated with the names of the photos. NOTE: some of these details are obtained from third party information.
CVSS Score
5.0
EPSS Score
0.003
Published
2007-08-08


Products
Pricing
Contact Us

Shodan ® - All rights reserved