CVE-2008-4080
CVE-2008-4080 documents a SQL injection vulnerability in Stash 1.0.3, triggered when magic_quotes_gpc is disabled. The affected inputs are the username parameter to admin/library/authenticate.php and the download parameter to downloadmp3.php, allowing remote attackers to execute arbitrary SQL com...