Vulnerabilities (CVE)

Join the Common Vulnerabilities and Exposures (CVE) community and start to get notified about new vulnerabilities.

Filtered by vendor Atomic Photo Album Subscribe
Filtered by product Atomic Photo Album
Total 3 CVE
CVE Vendors Products Updated CVSS v2 CVSS v3
CVE-2008-4335 1 Atomic Photo Album 1 Atomic Photo Album 2017-09-28 7.5 HIGH N/A
SQL injection vulnerability in album.php in Atomic Photo Album (APA) 1.1.0pre4 allows remote attackers to execute arbitrary SQL commands via the apa_album_ID parameter.
CVE-2008-4714 1 Atomic Photo Album 1 Atomic Photo Album 2017-09-28 7.5 HIGH N/A
Atomic Photo Album 1.1.0 pre4 does not properly handle the apa_cookie_login and apa_cookie_password cookies, which probably allows remote attackers to bypass authentication and gain administrative access via modified cookies.
CVE-2005-2413 1 Atomic Photo Album 1 Atomic Photo Album 2017-07-10 5.0 MEDIUM N/A
PHP remote file inclusion vulnerability in apa_phpinclude.inc.php in Atomic Photo Album (APA) allows remote attackers to execute arbitrary PHP code via the apa_module_basedir parameter.