CVE-2008-0256
CVE-2008-0256 describes multiple SQL injection vulnerabilities in Matteo Binda ASP Photo Gallery 1.0. The flaws allow remote attackers to execute arbitrary SQL commands via the (1) id parameter to (a) Imgbig.asp, (b) thumb.asp, and (c) thumbricerca.asp, and the (2) ricerca parameter to (d) thumbr...