CVE-2008-4338 (brilliant_gallery) |
|
| BugsAlert Home > CVE-2008-4338 (brilliant_gallery) | |
|
SQL injection vulnerability in the brilliant_gallery_checklist_save function in the bgchecklist/save script in Brilliant Gallery 5.x and 6.x, a module for Drupal, allows remote authenticated users with "access brilliant_gallery" permissions to execute arbitrary SQL commands via the (1) nid, (2) qid, (3) state, and possibly (4) user parameters. Original Source: http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2008-4338 Learn more about CVE-2008-4338 (brilliant_gallery) |
|
| Tags: cve-2008-4338 brilliant gallery | |
Related Items |
|
|
Ingres Multiple Vulnerabilities
|
|
|
Liferea "LD_LIBRARY_PATH" Variable Local Code Execution Vulnerability
|
|
|
CVE-2008-3779 (five_star_review_script)
|
|
|
CVE-2008-0109 (Word, Office)
|
|
|
CVE-2007-6401 (Windows Media Player)
|
|
|
CVE-2007-6370 (7940)
|
|
|
Alkacon OpenCms "filePath" Cross-Site Scripting and File Disclosure
|
|
