CVE-2008-4627
CVE-2008-4627 describes an SQL injection in the rGallery plugin for WoltLab Burning Board (WBB) version 1.09. The vulnerability allows remote attackers to execute arbitrary SQL commands through the itemID parameter on the RGalleryImageWrapper page (index.php). The CVE entry notes a high risk (CVS...