Photo Video Album version 1.0 suffers from local file inclusion and remote shell upload vulnerabilities.
f3876755c36f7ac9243e6f8a55d654c919116bcd7078c7115015dc4c737dd532Max's Photo Album suffers from a shell upload vulnerability.
53045392ed89dec52a4ebce83297b9663a2d433bf2c30558bee705c24028f92bPHPhotoalbum suffers from a remote shell upload vulnerability.
3bc070465e2c256fbeba1e5de7276923283dd12afa0f965a6d23d931f4170d7eSecunia Security Advisory - wlhaan Hacker has discovered a vulnerability in Max's Photo Album, which can be exploited by malicious people to compromise a vulnerable system.
382b51baaff9dea3cbf9f447bf4330654e3ac29fc7983e9a6298a98da2f9a865Secunia Research has discovered a vulnerability in Lateral Arts Photobox uploader ActiveX Control, which can be exploited by malicious people to compromise a user's system. The vulnerability is caused by a boundary error when parsing URLs. This can be exploited to cause a stack-based buffer overflow via an overly long string assigned to a number of properties (e.g. "LogURL", "ConnectURL", "SkinURL", "AlbumCreateURL", "ErrorURL", and "httpsinglehost"). Successful exploitation allows execution of arbitrary code when a user e.g. visits a malicious website. The vulnerability is confirmed in version 2.2.0.6. Other versions may also be affected.
9d8d86dda126c1b780b660c3791afd6754a9098c7af3833b073cd5be307b80beSecunia Security Advisory - Some vulnerabilities have been reported in the DM Albums plugin for WordPress, which can be exploited by malicious users to bypass certain security restrictions, and by malicious people to bypass certain security restrictions and conduct cross-site scripting attacks.
530cd2b251f409e46481b8c54c66e65cd96b4b412b9f2e2670a9ed6baf847176Joomla Album component version 1.14 suffers from a directory traversal vulnerability.
65817241473da6ff177187f92fe4b582bc77f8ed759d35e4612bfc11cd43e1f8FLIP Flash Album Deluxe version 1.8.407.1 crash exploit that creates a malicious .fft file.
2e24ad3d50cbbcb7955ac1c6cfe4cb721e04f36cac831304c22a778fdfac61c0Secunia Security Advisory - MizoZ has reported a vulnerability in ScriptsEz Ez Album, which can be exploited by malicious people to conduct script insertion attacks.
50a9e5366a6e6e0d15aa64e17020e7799a037e87d495d5c6fffa0428ba5df033Ez Album suffers from a persistent cross site scripting vulnerability.
4fabfff117afcd1456d06c41e1137f5999cf411e5d39dc1f1269190b455edecfThe Media Album module for Miniweb version 2.0 suffers from cross site scripting vulnerabilities.
8d2dda377cc164458829432c5df50722bf6d011b8be9cf645e715a3b0aed7a2bThe DM Album WordPress plugin version 1.9.2 suffers from a remote file disclosure vulnerability.
a493e9330a4a84b67b6e84047a3ef56e790ea81800e473a95156dd47d5f16024Secunia Security Advisory - Septemb0x has discovered a vulnerability in the DM Albums plugin for WordPress, which can be exploited by malicious people to compromise a vulnerable system.
a33360405f68b9e460626acc49b532f8dd8729e62e99f11684a9786aa4119331DM Albums version 1.9.2 and WordPress plugin suffer from a remote file inclusion vulnerability.
b784aa497bd6b2055a69418794ed5b13c4b7408ca6b4b8d6a81f3dc90357e0f1Secunia Security Advisory - A vulnerability has been reported in RTWebalbum, which can be exploited by malicious people to conduct SQL injection attacks.
a3042364e16d1800af41dbd5e87cd6f951440faedd80c44b3e910463e0a58d3dRTWebalbum version 1.0.462 blind SQL injection exploit.
44d2de74471380ca901baefccdca9cbe87132938aa707fb4ef6ed779d6f25fb5WEBalbum version 2.4b remote blind SQL injection exploit that leverages photo.php.
d7ca1aa02c5273038ee9b6ec42eeecb08d78c6771b8f839cc998f1d883d9e289Php Photo Album version 0.8 BETA suffers from a local file inclusion vulnerability in index.php.
0e15eb16c449c7c2349299da0c98d704915630c6e89a00ae30a22d02fed97fd1Secunia Security Advisory - AlpHaNiX has reported a vulnerability in Pixel8 Web Photo Album, which can be exploited by malicious people to conduct SQL injection attacks.
6eae26a2325ff2f2829d459536b354437e63e3af3c8a9cb4c0119f772bebeb90Pixel8 Web Photo Album version 3.0 suffers from a remote SQL injection vulnerability in Photo.asp.
15915171465e700d164cdb26c665d1dc355c430384b7ced6b7faa59183ebcc54Social Groupie suffers from a remote file upload vulnerability in create_album.php.
15e9dd3577d230239d8706161fde60c3ae42b1782bbdcb733b8a11db077efdbbSecunia Security Advisory - A vulnerability has been discovered in Kwalbum, which can be exploited by malicious users to compromise a vulnerable system.
5e4ae16d13e204a4c7b78da0f8b6837cd23484adbecd9befa7839768490f2fc3Kwalbum versions 2.0.2 and below suffer from an arbitrary file upload vulnerability.
1db01feb7107f6a619e65dd770f9bd2d7df5ee4ab50ef3f1f6c1a3f489fd17a6Atomic Photo Album version 1.1.0pre4 suffers from an insecure cookie handling vulnerability.
cbdf5e81db67cf5fb1988cd914f9fa8a1fa2c307129ddcfadf85d279785b965cAtomic Photo Album version 1.1.0pre4 suffers from SQL injection and cross site scripting vulnerabilities in album.php.
2fda03a7a013e5c38bc716073d9a9bad6bf7dfb2db8906d83343bdb3b3dd8295Secunia Security Advisory - sl4x.xuz has reported some vulnerabilities in AvailScript Photo Album, which can be exploited by malicious people to conduct SQL injection attacks.
0292b613a53bb84c3f39ce2cbcd6069bde34a350267cb199e415463ba9316944
© 2022 Packet Storm. All rights reserved.
%7Cutmcsr%3D(direct)%7Cutmcmd%3D(none)){kind=small}
Follow us on Twitter
Follow us on Facebook
Subscribe to an RSS Feed