Security Advisory

CVE-2004-1415

CVE vulnerability detail — eXtreme Datacenter Security Operations

Published 2005-02-12 05:00:00

Last updated 2024-08-08 00:53:23

Assigner mitre

State PUBLISHED

Description

SQL injection vulnerability in (1) disp_album.php and possibly (2) disp_img.php in 2Bgal 2.4 and 2.5.1 allows remote attackers to execute arbitrary SQL commands via the id_album parameter.

← Browse all CVEs View on cve.org ↗