Zenphoto : Security Vulnerabilities, CVEs, Published In 2012 (Sql injection)
SQL injection vulnerability in the Manage Albums feature in zp-core/admin-albumsort.php in ZENphoto 1.4.2 allows remote authenticated users to execute arbitrary SQL commands via the sortableList parameter.
Max CVSS
6.0
EPSS Score
0.34%
Published
2012-02-21
Updated
2017-08-29
1 vulnerabilities found