Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
picturespro picturespro photo cart 3.9 vulnerabilities and exploits
(subscribe to this query)
4.3
CVSSv2
CVE-2008-3786
Cross-site scripting (XSS) vulnerability in index.php in PICTURESPRO Photo Cart 3.9 allows remote malicious users to inject arbitrary web script or HTML via the qtitle parameter (aka "Gallery or event name" field) in a search action.
Picturespro Picturespro Photo Cart 3.9
1 EDB exploit
6.8
CVSSv2
CVE-2008-3788
Multiple SQL injection vulnerabilities in PICTURESPRO Photo Cart 3.9, when magic_quotes_gpc is disabled, allow remote malicious users to execute arbitrary SQL commands via the (1) qtitle, (2) qid, and (3) qyear parameters to (a) search.php, and the (4) email and (5) password para...
Picturespro Picturespro Photo Cart 3.9
1 EDB exploit
7.5
CVSSv2
CVE-2006-6093
Multiple PHP remote file inclusion vulnerabilities in adminprint.php in PicturesPro Photo Cart 3.9 allow remote malicious users to execute arbitrary PHP code via a URL in the (1) admin_folder and (2) path parameters.
Picturespro Picturespro Photo Cart 3.9
1 EDB exploit
CVSSv2
CVSSv2
CVSSv3
VMScore
Recommendations:
CVE-2024-33572
CVE-2024-24919
CVE-2024-0230
CVE-2024-32714
HTML injection
local file inclusion
CVE-2024-31098
CVE-2024-31244
privilege
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started