Arbitrary SQL Command Execution in zOOm Media Gallery 2.1.2 via catid Parameter

Arbitrary SQL Command Execution in zOOm Media Gallery 2.1.2 via catid Parameter

CVE-2005-1079 · HIGH Severity

AV:N/AC:L/AU:N/C:P/I:P/A:P

SQL injection vulnerability in index.php for zOOm Media Gallery 2.1.2 allows remote attackers to execute arbitrary SQL commands via the catid parameter.

Learn more about our Cis Benchmark Audit For Zoom.