Show filters
25 Total Results
Displaying 21-25 of 25
Sort by:
Attacker Value
Unknown

CVE-2017-18375

Disclosure Date: May 24, 2019 (last updated November 27, 2024)
Ampache 3.8.3 allows PHP Object Instantiation via democratic.ajax.php and democratic.class.php.
0
0
Attacker Value
Unknown

CVE-2008-3929

Disclosure Date: September 04, 2008 (last updated October 04, 2023)
gather-messages.sh in Ampache 3.4.1 allows local users to overwrite arbitrary files via a symlink attack on the /tmp/filelist temporary file.
0
0
Attacker Value
Unknown

CVE-2007-4437

Disclosure Date: August 20, 2007 (last updated October 04, 2023)
SQL injection vulnerability in albums.php in Ampache before 3.3.3.5 allows remote attackers to execute arbitrary SQL commands via the match parameter. NOTE: some details are obtained from third party information.
0
0
Attacker Value
Unknown

CVE-2007-4438

Disclosure Date: August 20, 2007 (last updated October 04, 2023)
Session fixation vulnerability in Ampache before 3.3.3.5 allows remote attackers to hijack web sessions via unspecified vectors.
0
0
Attacker Value
Unknown

CVE-2006-5668

Disclosure Date: November 03, 2006 (last updated October 04, 2023)
Unspecified vulnerability in Ampache 3.3.2 and earlier, when register_globals is enabled, allows remote attackers to bypass security restrictions and gain guest access.
0
0
View More Topics  < Previous