CVE-2007-4918

SQL injection vulnerability in classes/gelato.class.php in Gelato allows remote attackers to execute arbitrary SQL commands via the post parameter to index.php.

Date published : 2007-09-17

http://www.securityfocus.com/bid/25677

http://www.securityfocus.com/archive/1/479466/100/0/threaded