SQL Injection Vulnerability in PhotoPost PHP Pro 5.x

SQL Injection Vulnerability in PhotoPost PHP Pro 5.x

CVE-2005-0929 · HIGH Severity

AV:N/AC:L/AU:N/C:P/I:P/A:P

SQL injection vulnerability in PhotoPost PHP Pro 5.x may allow remote attackers to execute arbitrary SQL commands via (1) the sl parameter to showmembers.php or (2) the photo parameter to showphoto.php.

Learn more about our Web Application Penetration Testing UK.