Multiple SQL injection vulnerabilities in EImagePro allow remote malicious users to execute arbitrary SQL commands via the (1) CatID parameter to subList.asp, (2) SubjectID parameter to imageList.asp, or (3) Pic parameter to view.asp.
Vulnerable Product | Search on Vulmon | Subscribe to Product |
---|---|---|
keyvan1 eimagepro |