CVE-2009-2311
CVE-2009-2311 describes a SQL injection in the rGallery plugin 1.2.3 for WoltLab Burning Board (WBB3). The vulnerability allows remote attackers to execute arbitrary SQL commands via the userID parameter on the RGalleryUserGallery page to index.php, a vector distinct from CVE-2008-4627. The NVD e...