Arbitrary SQL Command Execution Vulnerability in Zenphoto before 1.4.9

Arbitrary SQL Command Execution Vulnerability in Zenphoto before 1.4.9

CVE-2015-5591 · HIGH Severity

CVSS:3.1/AV:N/AC:L/PR:H/UI:N/S:U/C:H/I:H/A:H

SQL injection vulnerability in Zenphoto before 1.4.9 allow remote administrators to execute arbitrary SQL commands.

Learn more about our Web Application Penetration Testing UK.