QwikSec

Security Database

CVE

CWE

Training

CVE Database
/

CVE-2008-4804

Back to search

CVE-2008-4804

Published: Oct 31, 2008

Modified: Aug 7, 2024

PUBLISHED

Description

SQL injection vulnerability in the Gallery module 1.3 for PHP-Nuke allows remote attackers to execute arbitrary SQL commands via the aid parameter in a showalbum action to index.php. NOTE: some of these details are obtained from third party information. NOTE: this issue was disclosed by an unreliable researcher, so it might be incorrect.

VendorProductVersions

n/a

n/a

affected
n/a

References

27957
vdb-entry
x_refsource_BID
20080223 php nuke gallery SQL Injection(aid)
mailing-list
x_refsource_BUGTRAQ
gallery-aid-sql-injection(41006)
vdb-entry
x_refsource_XF

Security Training

Train your team to recognize and prevent security threats with our comprehensive security awareness program.

Start Training

Vulnerability Scanning

Discover vulnerabilities in your applications and infrastructure before attackers do.

Scan Now
CVE-2008-4804 - Security Vulnerability | QwikSec