CVE-2004-0239

Photopost Php Pro - SQL Injection

Title source: rule

Description

SQL injection vulnerability in showphoto.php in PhotoPost PHP Pro 4.6 and earlier allows remote attackers to gain unauthorized access via the photo variable.

Exploits (1)

exploitdb WORKING POC
webappsphp
https://www.exploit-db.com/exploits/14453

References (4)

Scores

EPSS 0.0038
EPSS Percentile 59.5%

Details

Status published
Products (6)
photopost/photopost_php_pro 3.1
photopost/photopost_php_pro 3.2
photopost/photopost_php_pro 3.3
photopost/photopost_php_pro 4.0
photopost/photopost_php_pro 4.1
photopost/photopost_php_pro 4.6
Published Nov 23, 2004
Tracked Since Feb 18, 2026