CVE-2008-6485

Softcomplex Php Image Gallery - SQL Injection

Title source: rule

Description

SQL injection vulnerability in index.php in SoftComplex PHP Image Gallery allows remote attackers to execute arbitrary SQL commands via the ctg parameter.

Exploits (2)

exploitdb WORKING POC VERIFIED

by Hussin X · textwebappsphp

https://www.exploit-db.com/exploits/7026

View Code ZIP pw:eip

exploitdb WORKING POC

webappsphp

https://www.exploit-db.com/exploits/7021

View Code ZIP pw:eip

References (3)

[Exploit] http://www.securityfocus.com/bid/32182

[Third Party Advisory, VDB Entry] https://exchange.xforce.ibmcloud.com/vulnerabilities/46436

[Exploit, Third Party Advisory] https://www.exploit-db.com/exploits/7026

Scores

EPSS 0.0039

EPSS Percentile 59.8%

Details

CWE

CWE-89

Status published

Products (1)

softcomplex/php_image_gallery

Published Mar 18, 2009

Tracked Since Feb 18, 2026