CyberSec.Space Logo
Back to CVE Browser

CVE-2008-0735

CRITICAL
10.0
CVSS Severity Score
EPSS Score0.0090%
EPSS Percentile27.48th
PublishedFeb 13, 2008
Last ModifiedApr 23, 2026

Vulnerability Description

SQL injection vulnerability in mod/gallery/ajax/gallery_data.php in AuraCMS 2.2 allows remote attackers to execute arbitrary SQL commands via the albums parameter.

Affected Platforms (CPE)

πŸ“¦
Auracms

Auracms

= 2.2

References & Advisories

πŸ”— http://secunia.com/advisories/28950
πŸ”— http://www.securityfocus.com/bid/27764
πŸ”— https://www.exploit-db.com/exploits/5105
πŸ”— http://secunia.com/advisories/28950
πŸ”— http://www.securityfocus.com/bid/27764
πŸ”— https://www.exploit-db.com/exploits/5105

Related Vulnerabilities

CVE-2018-163388.8

An issue was discovered in AuraCMS 2.3. There is a CSRF vulnerability that can change the administrator's password via admin.php?m...

CVE-2007-41717.5

SQL injection vulnerability in komentar.php in the Forum Module for auraCMS (Modul Forum Sederhana) allows remote attackers to exe...

CVE-2006-35597.5

Multiple SQL injection vulnerabilities in Arif Supriyanto auraCMS 1.62 allow remote attackers to execute arbitrary SQL commands an...

CVE-2007-48047.5

Multiple SQL injection vulnerabilities in AuraCMS 1.5rc allow remote attackers to execute arbitrary SQL commands via the id parame...