CVE-2012-5289

Multiple SQL injection vulnerabilities in Plogger 1.0 RC1 allow remote attackers to execute arbitrary SQL commands via the id parameter to (1) index.php or (2) gallery.php.

Date published : 2012-10-04

http://www.securityfocus.com/bid/51228

http://packetstormsecurity.org/files/view/108295/ploggerphotogallery-sql.txt