Exploitation Summary
EIP tracks 1 public exploit for CVE-2008-0614. PoCs published by you_kn0w.
AI-analyzed exploit summary This exploit demonstrates a SQL injection vulnerability in Photokorn Gallery 1.543. It leverages a union-based SQL injection to extract database information, including the current user and database name.
Description
SQL injection vulnerability in index.php in Photokorn Gallery 1.543 allows remote attackers to execute arbitrary SQL commands via the pic parameter in a showpic action.
Exploits (1)
exploitdb
WORKING POC
VERIFIED
by you_kn0w · textwebappsphp
https://www.exploit-db.com/exploits/5065
This exploit demonstrates a SQL injection vulnerability in Photokorn Gallery 1.543. It leverages a union-based SQL injection to extract database information, including the current user and database name.
Classification
Working Poc 95%
Attack Type
Sqli
Complexity
Trivial
Reliability
Reliable
Target:
Photokorn Gallery 1.543
No auth needed
Prerequisites:
Target running Photokorn Gallery 1.543 · Access to the vulnerable endpoint
mistral-large-3 · analyzed Feb 16, 2026
Full analysis →
References (2)
Core 2
Core References
Third Party Advisory, VDB Entry vdb-entry
x_refsource_bid
http://www.securityfocus.com/bid/27627
Exploit, Third Party Advisory exploit
x_refsource_exploit-db
https://www.exploit-db.com/exploits/5065
Scores
EPSS
0.0093
EPSS Percentile
56.2%
Details
CWE
CWE-89
Status
published
Products (1)
photokorn/gallery
1.543
Published
Feb 06, 2008
Tracked Since
Feb 18, 2026