Vulmon Recent Vulnerabilities Research Posts Trends Blog About Contact
7.5
CVSSv2

CVE-2010-1300

Published: 07/04/2010 Updated: 17/08/2017
CVSS v2 Base Score: 7.5 | Impact Score: 6.4 | Exploitability Score: 10
VMScore: 770
Vector: AV:N/AC:L/Au:N/C:P/I:P/A:P
Subscribe to Yamamah

Vulnerability Summary

SQL injection vulnerability in index.php in Yamamah (aka Dove Photo Album) 1.00 allows remote malicious users to execute arbitrary SQL commands via the calbums parameter.

Vulnerable Product Search on Vulmon Subscribe to Product

yamamah yamamah 1.00

Exploits

Exploit DB: Yamamah 1.0 - SQL Injection
# Exploit Title: Yamamah 10 SQL Injection Vulnerability # Date: 12/06/2010 # Author: TheMaStEr <v4m@hotmailde> # Software Link: wwwyamamahorg/ # Version: 100 # Tested on: Windows SP3 # Dork: intext:"Powered By : Yamamah Version 100" # Code : localhost/y/indexphp?calbums=1' demo : target/path/?calbums=1+and+1=1-- &l ...
Exploit DB: Yamamah - 'news' SQL Injection / Source Code Disclosure
# Exploit Title: Yamamah Vulnerability (news) SQL Injection / disclosure Vulnerability # Date: 12-06-2010 # Author: anT!-Tr0J4n #My Home : wwwDev-PoinTcom # Software Link:wwwyamamahorg # Version: 100 # Tested on: Win7/Linux #DorK : N / A ========== Exploit By anT!-Tr0J4n============ =======Yamamah source code disclosure Vulnera ...
Exploit DB: Yamamah 1.00 - Multiple Vulnerabilities
======================================================================================== | # Title : Yamamah Version 100 Mullti Vulnerability | # Author : indoushka | # Home : wwwdz-blackhatcom ...
Exploit DB: Yamamah Photo Gallery 1.00 - 'calbums' SQL Injection
################################################################################################## Yamamah Photo Gallery 100 SQL Injection Vulnerability ################################################################################################## Author : CoBRa_21 Script Home : wwwyamamahorg/ Dork : "Powered By : Yamamah Version ...

References

CWE-89http://www.exploit-db.com/exploits/11947http://secunia.com/advisories/39205http://osvdb.org/63344http://packetstormsecurity.org/1003-exploits/yamamah-sql.txthttp://www.securityfocus.com/bid/39690http://www.exploit-db.com/exploits/13849http://www.exploit-db.com/exploits/13857https://exchange.xforce.ibmcloud.com/vulnerabilities/59404https://exchange.xforce.ibmcloud.com/vulnerabilities/57415https://nvd.nist.govhttps://www.exploit-db.com/exploits/13849/
CVSSv2
CVSSv2
CVSSv3
VMScore
Recommendations:
CVE-2024-30924CVE-2024-3400overflowCVE-2024-23528CVE-2024-21338CVE-2024-3818CVE-2024-23535NULL pointer dereferenceelevation of privilege
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started

Vulmon Search

Vulmon Search is a vulnerability search engine. It gives comprehensive vulnerability information through a very simple user interface.

About

Home Recent Vulnerabilities Research Posts Trends Blog About Contact

Products

Vulmon Search Vulmon Research Vulmon Alerts Vulmap

Connect

Twitter Reddit Linkedin Facebook