Yamamah Photo Gallery 1.1 - Database Information Disclosure

EDB-ID:

37330

CVE:

N/A


Author:

L3b-r1'z

Type:

webapps


Platform:

PHP

Date:

2012-05-28


source: https://www.securityfocus.com/bid/53709/info

Yamamah Photo Gallery is prone to an information-disclosure vulnerability.

An attacker can exploit this issue to download the database that contain sensitive information. Information harvested may aid in launching further attacks.

Yamamah 1.1.0 is vulnerable; other versions may also be affected. 

http://www.example.com/yamamah/cp/export.php