CVE-2014-100031
Ganesha Digital Library (GDL) version 4.2 is affected by multiple SQL injection vulnerabilities exploitable via the id parameter in download.php and main.php. The issue permits remote attackers to execute arbitrary SQL commands, with impacts stated as partial confidentiality, integrity, and avail...