Wallpaper Admin

wallpaper_admin

Vendor: Viaviweb • 3 CVEs

CVEs (3)

CVE VENDORS PRODUCTS UPDATED PUBLISHED CVSS
CVE-2022-50894 1Viaviweb 1Wallpaper Admin Jan 26, 2026 Jan 13, 2026 7.1 HIGH· v4 6.5 MEDIUM· v3 N/A· v2 VIAVIWEB Wallpaper Admin 1.0 contains an SQL injection vulnerability that allows authenticated attackers to manipulate database queries by injecting SQL code through the img_id parameter. Attackers can send GET requests...Show more VIAVIWEB Wallpaper Admin 1.0 contains an SQL injection vulnerability that allows authenticated attackers to manipulate database queries by injecting SQL code through the img_id parameter. Attackers can send GET requests to edit_gallery_image.php with malicious img_id values to extract database information.Show less
CVE-2022-50893 1Viaviweb 1Wallpaper Admin Jan 22, 2026 Jan 13, 2026 9.3 CRITICAL· v4 9.8 CRITICAL· v3 N/A· v2 VIAVIWEB Wallpaper Admin 1.0 contains an unauthenticated remote code execution vulnerability in the image upload functionality. Attackers can upload a malicious PHP file through the add_gallery_image.php endpoint to exec...Show more VIAVIWEB Wallpaper Admin 1.0 contains an unauthenticated remote code execution vulnerability in the image upload functionality. Attackers can upload a malicious PHP file through the add_gallery_image.php endpoint to execute arbitrary code on the server.Show less
CVE-2022-50892 1Viaviweb 1Wallpaper Admin Jan 22, 2026 Jan 13, 2026 8.8 HIGH· v4 9.8 CRITICAL· v3 N/A· v2 VIAVIWEB Wallpaper Admin 1.0 contains a SQL injection vulnerability that allows attackers to bypass authentication by manipulating login credentials. Attackers can exploit the login page by injecting 'admin' or 1=1-- - p...Show more VIAVIWEB Wallpaper Admin 1.0 contains a SQL injection vulnerability that allows attackers to bypass authentication by manipulating login credentials. Attackers can exploit the login page by injecting 'admin' or 1=1-- - payload to gain unauthorized access to the administrative interface.Show less