Unrated severityNVD Advisory· Published Nov 23, 2004· Updated Jun 16, 2026
CVE-2004-0239
CVE-2004-0239
Description
SQL injection vulnerability in showphoto.php in PhotoPost PHP Pro 4.6 and earlier allows remote attackers to gain unauthorized access via the photo variable.
AI Insight
LLM-synthesized narrative grounded in this CVE's description and references.
Affected products
7cpe:2.3:a:photopost:photopost_php_pro:3.1:*:*:*:*:*:*:*+ 6 more
- cpe:2.3:a:photopost:photopost_php_pro:3.1:*:*:*:*:*:*:*
- cpe:2.3:a:photopost:photopost_php_pro:3.2:*:*:*:*:*:*:*
- cpe:2.3:a:photopost:photopost_php_pro:3.3:*:*:*:*:*:*:*
- cpe:2.3:a:photopost:photopost_php_pro:4.0:*:*:*:*:*:*:*
- cpe:2.3:a:photopost:photopost_php_pro:4.1:*:*:*:*:*:*:*
- cpe:2.3:a:photopost:photopost_php_pro:4.6:*:*:*:*:*:*:*
- (no CPE)range: <=4.6
Patches
Vulnerability mechanics
References
4- www.securityfocus.com/bid/9557nvdExploitVendor Advisory
- marc.infonvd
- www.securiteam.com/securitynews/5KP010UC0W.htmlnvd
- exchange.xforce.ibmcloud.com/vulnerabilities/15008nvd
News mentions
0No linked articles in our index yet.