SQL injection vulnerability in rss.php in Zenphoto 1.1 up to and including 1.1.3 allows remote malicious users to execute arbitrary SQL commands via the albumnr parameter.
Vulnerable Product | Search on Vulmon | Subscribe to Product |
---|---|---|
zenphoto zenphoto 1.1 |
||
zenphoto zenphoto 1.1.1 |
||
zenphoto zenphoto 1.1.2 |
||
zenphoto zenphoto 1.1.3 |