CVE-2005-1948
CVE-2005-1948 affects Invision Gallery prior to 1.3.1. The product is vulnerable to multiple SQL injection flaws via (1) the comment parameter in an editcomment action or (2) the rating parameter when voting on a photo, due to improper sanitization of user-supplied data. Remote attackers could ex...