CVE-2008-3599
CVE-2008-3599 : OpenImpro 1.1 has a SQL injection in image.php via the id parameter that allows remote attackers to execute arbitrary SQL commands. The underlying flaw is an unsafeguarded input used in SQL queries, enabling PII/DB manipulation and potential data exposure or modification as indica...