CVE-2008-6348
CVE-2008-6348 affects DevelopItEasy Photo Gallery 1.2. The vulnerability is a SQL injection in multiple parameters: cat_id (gallery_category.php), photo_id (gallery_photo.php), and user_name/user_pass (admin/index.php). The underlying root cause is improper input handling that allows attackers to...