Vulmon Recent Vulnerabilities Research Posts Trends Blog About Contact

photopost photopost php pro vulnerabilities and exploits

(subscribe to this query)
NA
CVE-2005-1629
SQL injection vulnerability in member.php for Photopost PHP Pro allows remote malicious users to execute arbitrary SQL commands via the verifykey parameter.
Photopost Photopost Php Pro 3.1Photopost Photopost Php Pro 3.2Photopost Photopost Php Pro 5.0 Rc3Photopost Photopost Php Pro 4.0Photopost Photopost Php Pro 4.6Photopost Photopost Php Pro 3.3Photopost Photopost Php Pro 4.1Photopost Photopost Php Pro 4.8.1
NA
CVE-2004-1871
Multiple cross-site scripting (XSS) vulnerabilities in PhotoPost PHP Pro 4.6.x and previous versions allow remote malicious users to inject arbitrary web script or HTML via the (1) ppuser, (2) password, (3) stype, (4) perpage, (5) sort, (6) page, (7) si, or (8) cat parameters to ...
Photopost Photopost Php Pro 3.1Photopost Photopost Php Pro 3.2Photopost Photopost Php Pro 3.3Photopost Photopost Php Pro 4.0Photopost Photopost Php Pro 4.8.1Photopost Photopost Php Pro 4.1Photopost Photopost Php Pro 4.6
NA
CVE-2006-4828
PHP remote file inclusion vulnerability in zipndownload.php in PhotoPost 4.0 up to and including 4.6 allows remote malicious users to execute arbitrary PHP code via a URL in the PP_PATH parameter.
Photopost Photopost Php Pro 4.0Photopost Photopost Php Pro 4.1Photopost Photopost Php Pro 4.2Photopost Photopost Php Pro 4.3Photopost Photopost Php Pro 4.6Photopost Photopost Php Pro 4.4Photopost Photopost Php Pro 4.5
NA
CVE-2004-1870
Multiple SQL injection vulnerabilities in PhotoPost PHP Pro 4.6.x and previous versions allow remote malicious users to gain users' passwords via the (1) photo parameter to addfav.php, (2) photo parameter to comments.php, (3) credit parameter to comments.php, (4) cat paramet...
Photopost Photopost Php Pro 3.2Photopost Photopost Php Pro 3.3Photopost Photopost Php Pro 3.1Photopost Photopost Php Pro 4.8.1Photopost Photopost Php Pro 4.0Photopost Photopost Php Pro 4.1Photopost Photopost Php Pro 4.6
NA
CVE-2004-0250
SQL injection vulnerability in PhotoPost PHP Pro 4.6 and previous versions allows remote malicious users to gain privileges via (1) the product parameter in showproduct.php or (2) the cat parameter in showcat.php.
Photopost Photopost Php Pro 3.1Photopost Photopost Php Pro 4.0Photopost Photopost Php Pro 4.1Photopost Photopost Php Pro 3.2Photopost Photopost Php Pro 3.3Photopost Photopost Php Pro 4.6
NA
CVE-2004-0239
SQL injection vulnerability in showphoto.php in PhotoPost PHP Pro 4.6 and previous versions allows remote malicious users to gain unauthorized access via the photo variable.
Photopost Photopost Php Pro 3.1Photopost Photopost Php Pro 3.2Photopost Photopost Php Pro 3.3Photopost Photopost Php Pro 4.0Photopost Photopost Php Pro 4.1Photopost Photopost Php Pro 4.6
NA
CVE-2006-4990
Multiple PHP remote file inclusion vulnerabilities in PhotoPost allow remote malicious users to execute arbitrary PHP code via a URL in the PP_PATH parameter in (1) addfav.php, (2) adm-admlog.php, (3) adm-approve.php, (4) adm-backup.php, (5) adm-cats.php, (6) adm-cinc.php, (7) ad...
Photopost Photopost Php Pro 4.5Photopost Photopost Php Pro 4.6
NA
CVE-2005-0270
Multiple cross-site scripting (XSS) vulnerabilities in ReviewPost PHP Pro prior to 2.84 allow remote malicious users to inject arbitrary web script or HTML via the (1) si parameter to showcat.php, (2) cat or (3) page parameter to showproduct.php, or (4) report parameter to report...
Photopost Reviewpost Php Pro 2.5.1Photopost Reviewpost Php ProPhotopost Reviewpost Php Pro 1.0.2Photopost Reviewpost Php Pro 2.5
NA
CVE-2005-0271
Multiple SQL injection vulnerabilities in ReviewPost PHP Pro prior to 2.84 allow remote malicious users to execute arbitrary SQL commands via the (1) cat parameter to showcat.php or (2) product parameter to addfav.php.
Photopost Reviewpost Php Pro 1.0.2Photopost Reviewpost Php Pro 2.5Photopost Reviewpost Php Pro
NA
CVE-2005-0272
ReviewPost PHP Pro prior to 2.84 allows remote malicious users to upload and execute arbitrary PHP files by posting a review file with multiple extensions, which bypasses the intended restrictions.
Photopost Reviewpost Php Pro 2.5Photopost Reviewpost Php ProPhotopost Reviewpost Php Pro 1.0.2
CVSSv3
CVSSv2
CVSSv3
VMScore
Recommendations:
authentication bypassCVE-2024-30043cameraCVE-2023-40404CVE-2024-2793client sideCVE-2024-4469CVE-2024-3565CVE-2024-29825
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started

Vulmon Search

Vulmon Search is a vulnerability search engine. It gives comprehensive vulnerability information through a very simple user interface.

About

Home Recent Vulnerabilities Research Posts Trends Blog About Contact

Products

Vulmon Search Vulmon Research Vulmon Alerts Vulmap

Connect

Twitter Reddit Linkedin Facebook