CVE-2014-9445
The CVE-2014-9445 entry describes a SQL injection in Installatron GQ File Manager 0.2.5, specifically in incl/create.inc.php, exploitable via the create parameter to index.php. This allows remote SQL command execution and can be leveraged to trigger a related XSS condition by causing an error (pe...