CVEs-PoC/2009/CVE-2009-0728.md at 8e2ebbf9bd04edab52d0cbcbc6c2f6e2cfdaa67d

mirror of https://github.com/0xMarcio/cve.git synced 2026-03-11 17:06:06 +00:00

Files

0xMarcio 48a00929ac Removed duplicates

2024-06-18 02:51:15 +02:00

Description

SQL injection vulnerability in the My_eGallery module for MAXdev MDPro (MD-Pro) and Postnuke allows remote attackers to execute arbitrary SQL commands via the pid parameter in a showpic action to index.php.

POC

Reference

https://www.exploit-db.com/exploits/8100

Github

No PoCs found on GitHub currently.

667 B Raw Blame History

CVE-2009-0728

Description

POC

Reference

Github

667 B

Raw Blame History