CVE-2006-2302
A CVE-2006-2302 entry describes a SQL injection vulnerability in DUGallery 2.x, specifically in admin_default.asp, exploitable via the (1) Login or (2) password fields. The underlying cause is improper input handling that allows remote attackers to execute arbitrary SQL commands. The NVD metrics ...