Nitro Web Gallery
by Nitropowered
CVEs (2)
| CVE | Sev | Risk | CVSS | EPSS | KEV | Published | Description |
|---|---|---|---|---|---|---|---|
| CVE-2010-2141 | 0.03 | — | 0.00 | Jun 2, 2010 | SQL injection vulnerability in index.php in NITRO Web Gallery allows remote attackers to execute arbitrary SQL commands via the PictureId parameter in an open action. | ||
| CVE-2008-2817 | 0.03 | — | 0.00 | Jun 23, 2008 | SQL injection vulnerability in albums.php in NiTrO Web Gallery 1.4.3 and earlier allows remote attackers to execute arbitrary SQL commands via the CatId parameter in a show action. |
- CVE-2010-2141Jun 2, 2010risk 0.03cvss —epss 0.00
SQL injection vulnerability in index.php in NITRO Web Gallery allows remote attackers to execute arbitrary SQL commands via the PictureId parameter in an open action.
- CVE-2008-2817Jun 23, 2008risk 0.03cvss —epss 0.00
SQL injection vulnerability in albums.php in NiTrO Web Gallery 1.4.3 and earlier allows remote attackers to execute arbitrary SQL commands via the CatId parameter in a show action.