Show filters
2 Total Results
Displaying 1-2 of 2
Sort by:
Attacker Value
Unknown
CVE-2008-3292
Disclosure Date: July 24, 2008 (last updated October 04, 2023)
constants.inc in EZWebAlbum 1.0 allows remote attackers to bypass authentication and gain administrator privileges by setting the photoalbumadmin cookie, as demonstrated via addpage.php.
0
Attacker Value
Unknown
CVE-2008-3293
Disclosure Date: July 24, 2008 (last updated October 04, 2023)
Directory traversal vulnerability in download.php in EZWebAlbum allows remote attackers to read arbitrary files via the dlfilename parameter.
0
