CVE-2006-0235

SQL injection vulnerability in WhiteAlbum 2.5 allows remote attackers to execute arbitrary SQL commands via the dir parameter to pictures.php.

Date published : 2006-01-17

http://www.securityfocus.com/bid/16247

http://www.securityfocus.com/archive/1/422105/100/0/threaded