Unrated severityNVD Advisory· Published Oct 8, 2011· Updated Jun 16, 2026
CVE-2010-4906
CVE-2010-4906
Description
SQL injection vulnerability in zp-core/full-image.php in Zenphoto 1.3 and 1.3.1.2 allows remote attackers to execute arbitrary SQL commands via the a parameter. NOTE: some of these details are obtained from third party information.
AI Insight
LLM-synthesized narrative grounded in this CVE's description and references.
Affected products
3Patches
Vulnerability mechanics
References
6- secunia.com/advisories/41350nvdVendor Advisory
- packetstormsecurity.org/1009-exploits/zenphoto-sqlxss.txtnvd
- securityreason.com/securityalert/8442nvd
- www.acunetix.com/blog/web-security-zone/articles/zenphoto-13-advisory/nvd
- www.securityfocus.com/archive/1/513525/100/0/threadednvd
- www.securityfocus.com/bid/43021nvd
News mentions
0No linked articles in our index yet.