| VID |
21535 |
| Severity |
30 |
| Port |
80, ... |
| Protocol |
TCP |
| Class |
CGI |
| Detailed Description |
The PhotoPost program is vulnerable to an SQL injection vulnerability in the showgallery.php script. PhotoPost PHP Pro is a web-based photo gallery program that uses a MySQL database. PhotoPost PHP Pro versions prior to 4.86 allow a remote attacker to execute arbitrary SQL commands, due to the application failing to properly sanitize user-supplied input to the 'cat' parameter before using it in SQL queries in the showgallery.php script. This vulnerability could permit a remote attacker to pass malicious input to database queries, potentially resulting in data exposure, modification of the query logic, or even data modification or attacks against the database itself.
* References:
http://www.gulftech.org/?node=research&article_id=00063-01032005
http://secunia.com/advisories/13680/
* Platforms Affected:
All Enthusiast, Inc., PhotoPost PHP Pro versions prior to 4.86
Any operating system Any version |
| Recommendation |
Upgrade to the latest version of PhotoPost PHP Pro (4.86 or later), available from the PhotoPost PHP Pro Web site at http://www.photopost.com/ |
| Related URL |
CVE-2005-0273,CVE-2005-0274 (CVE) |
| Related URL |
12156,12157 (SecurityFocus) |
| Related URL |
18744,18745 (ISS) |
|
