CVE-2005-0774

Published: Mar 10, 2005Modified: Apr 16, 2026

7.5

Vector

AV:N/AC:L/Au:N/C:P/I:P/A:P

Exploitability: 10.0 / Impact: 6.4

Source: NVD

Description

SQL injection vulnerability in member.php and possibly other scripts in PhotoPost PHP 5.0 RC3 allows remote attackers to execute arbitrary SQL commands via the uid parameter.

Affected (1)

Products: Photopost: Photopost Php Pro

Photopost

1 product

Photopost Php Pro

Configuration A

1 vulnerable

Vulnerable Software	Affected Versions
Photopost Photopost Php Pro	Version 5.0_rc3

References (8)

http://marc.info/?l=bugtraq&m=111065868402859&w=2

Source: cve@mitre.org

http://secunia.com/advisories/14576

Source: cve@mitre.org

PatchVendor Advisory

http://www.securityfocus.com/bid/12779

Source: cve@mitre.org

Vendor Advisory

https://exchange.xforce.ibmcloud.com/vulnerabilities/19675

Source: cve@mitre.org

http://marc.info/?l=bugtraq&m=111065868402859&w=2

Source: af854a3a-2127-422b-91ae-364da2661108

http://secunia.com/advisories/14576

Source: af854a3a-2127-422b-91ae-364da2661108

PatchVendor Advisory

http://www.securityfocus.com/bid/12779

Source: af854a3a-2127-422b-91ae-364da2661108

Vendor Advisory

https://exchange.xforce.ibmcloud.com/vulnerabilities/19675

Source: af854a3a-2127-422b-91ae-364da2661108

Timeline

No history available yet.