Description
SQL injection vulnerability in view.php in Noname Media Photo Galerie Standard 1.1.1 and earlier allows remote attackers to execute arbitrary SQL commands via the id parameter.
Exploits (1)
References (6)
Core 6
Core References
Third Party Advisory, VDB Entry vdb-entry
x_refsource_xf
https://exchange.xforce.ibmcloud.com/vulnerabilities/32171
Exploit, Third Party Advisory exploit
x_refsource_exploit-db
https://www.exploit-db.com/exploits/3261
Third Party Advisory, VDB Entry vdb-entry
x_refsource_osvdb
http://osvdb.org/33089
Third Party Advisory third-party-advisory
x_refsource_secunia
http://secunia.com/advisories/24029
Third Party Advisory, VDB Entry vdb-entry
x_refsource_bid
http://www.securityfocus.com/bid/22384
Third Party Advisory vdb-entry
x_refsource_vupen
http://www.vupen.com/english/advisories/2007/0475
Scores
EPSS
0.0167
EPSS Percentile
82.2%
Details
Status
published
Products (2)
noname_media/photo_galerie_standard
1.1
noname_media/photo_galerie_standard
< 1.1.1
Published
Feb 06, 2007
Tracked Since
Feb 18, 2026