[] NeoSense
E X P L O I T S
title author type platform port cve id

PHPAlbum 0.2.2/0.2.3/4.1 - 'Language.php' File Inclusion

Author: rgod
type: webapps
platform: php
port: 
date_added: 2006-04-15 
date_updated: 2013-08-17 
verified: 1 
codes: CVE-2006-1839;OSVDB-24741 
tags: 
aliases:  
screenshot_url:  
application_url: 
source: https://www.securityfocus.com/bid/17526/info

phpAlbum is prone to a remote file-include vulnerability because it fails to properly sanitize user-supplied input.

An attacker can exploit this issue to execute arbitrary remote PHP code on an affected computer with the privileges of the webserver process. This may facilitate unauthorized access.

phpAlbum 0.3.2.3 and prior versions are affected.

phpAlbum is prone to a remote file-include vulnerability because it fails to properly sanitize user-supplied input.

An attacker can exploit this issue to execute arbitrary remote PHP code on an affected computer with the privileges of the webserver process. This may facilitate unauthorized access.

phpAlbum 0.3.2.3 and prior versions are affected.
Billing Policy . Cookies Policy . Conditions . Disclaimer . ICANN Policy . Legal Notice . Privacy Policy . Spam Policy . Usage Policy
Copyright © 2026 NEOSENSE. All rights reserved.