CyberSec.Space Logo
返回 CVE 瀏覽器

CVE-2005-3160

HIGH
7.5
CVSS Severity Score
EPSS Score0.1930%
EPSS Percentile0.57th
Published2005年10月6日
Last Modified2026年4月16日

Vulnerability Description

Multiple SQL injection vulnerabilities in photogallery.php in PHP-Fusion allow remote attackers to execute arbitrary SQL commands via the (1) album and (2) photo parameters.

Affected Platforms (CPE)

📦
Php Fusion

Php Fusion

= 6.00.100
📦
Php Fusion

Php Fusion

= 6.00.101
📦
Php Fusion

Php Fusion

= 6.00.102
📦
Php Fusion

Php Fusion

= 6.00.103
📦
Php Fusion

Php Fusion

= 6.00.104
📦
Php Fusion

Php Fusion

= 6.00.105
📦
Php Fusion

Php Fusion

= 6.00.106
📦
Php Fusion

Php Fusion

= 6.00.107
📦
Php Fusion

Php Fusion

= 6.00.108
📦
Php Fusion

Php Fusion

= 6.00.109

References & Advisories

🔗 http://secunia.com/advisories/17048
🔗 http://www.osvdb.org/19841
🔗 http://secunia.com/advisories/17048
🔗 http://www.osvdb.org/19841

相關漏洞威脅

CVE-2010-493110.0

Directory traversal vulnerability in maincore.php in PHP-Fusion allows remote attackers to include and execute arbitrary local fil...

CVE-2020-289049.8

Execution with Unnecessary Privileges in Nagios Fusion 4.1.8 and earlier allows for Privilege Escalation as nagios via installatio...

CVE-2020-237549.6

Cross Site Scripting (XSS) vulnerability in infusions/member_poll_panel/poll_admin.php in PHP-Fusion 9.03.50, allows attackers to ...

CVE-2020-124618.8

PHP-Fusion 9.03.50 allows SQL Injection because maincore.php has an insufficient protection mechanism. An attacker can develop a c...