Tomasz Kowalski

2 exploits Active since Nov 2011

CVE-2010-5042 EXPLOITDB text WRITEUP

DJ-ArtGallery 0.9.1 - XSS

Cross-site scripting (XSS) vulnerability in the DJ-ArtGallery (com_djartgallery) component 0.9.1 for Joomla! allows remote attackers to inject arbitrary web script or HTML via the cid[] parameter in an editItem action to administrator/index.php. NOTE: some of these details are obtained from third party information.

View Code

CVE-2010-5043 EXPLOITDB text WRITEUP

DJ-ArtGallery 0.9.1 - SQL Injection

SQL injection vulnerability in the DJ-ArtGallery (com_djartgallery) component 0.9.1 for Joomla! allows remote authenticated users to execute arbitrary SQL commands via the cid[] parameter in an editItem action to administrator/index.php.

View Code