CVE-2008-2501
PHPhotoalbum 0.5 is affected by multiple SQL injection vulnerabilities that allow remote attackers to execute arbitrary SQL commands via the (1) album parameter to thumbnails.php and (2) pid parameter to displayimage.php. The issue is documented in CVE-2008-2501 and corroborated by NVD/CVE record...