CVE-2015-5591
ZenPhoto is affected by an SQL injection vulnerability in versions prior to 1.4.9. The issue arises because user input is not adequately validated, allowing a remote attacker with administrative access to inject and execute arbitrary SQL commands. Impact is the potential compromise of data confid...