Vulnerability Information
Although we use advanced large model technology, its output may still contain inaccurate or outdated information.Shenlong tries to ensure data accuracy, but please verify and judge based on the actual situation.
Vulnerability Title
N/A
Vulnerability Description
Multiple SQL injection vulnerabilities in DevelopItEasy Photo Gallery 1.2 allow remote attackers to execute arbitrary SQL commands via the (1) cat_id parameter to gallery_category.php, (2) photo_id parameter to gallery_photo.php, and the (3) user_name and (4) user_pass parameters to admin/index.php. NOTE: some of these details are obtained from third party information.
CVSS Information
N/A
Vulnerability Type
N/A
Vulnerability Title
Develop It Easy Photo Gallery多个SQL注入漏洞
Vulnerability Description
DevelopItEasy Photo Gallery是一款图片库管理工具。 DevelopItEasy Photo Gallery 1.2版本中存在多个SQL注入漏洞。远程攻击者可以借助(1)对gallery_category.php的cat_id参数,(2)对gallery_photo.php的photo_id参数,以及(3)user_name和(4)对admin/index.php的user_pass参数,执行任意SQL指令。
CVSS Information
N/A
Vulnerability Type
N/A