Multiple SQL injection vulnerabilities in EImagePro allow remote attackers to execute arbitrary SQL commands via the (1) CatID parameter to subList.asp, (2) SubjectID parameter to imageList.asp, or (3) Pic parameter to view.asp.
References
Configurations
History
No history.
Information
Published : 2006-05-11 10:02
Updated : 2024-02-04 16:52
NVD link : CVE-2006-2300
Mitre link : CVE-2006-2300
CVE.ORG link : CVE-2006-2300
JSON object : View
Products Affected
keyvan1
- eimagepro
CWE