CVE-2005-1225 Information

Description

SQL injection vulnerability in Coppermine Photo Gallery 1.3.2 allows remote attackers to execute arbitrary SQL commands via the favs parameter to (1) init.inc.php or (2) zipdownload.php.

Reference

http://marc.info/?l=bugtraq&m=111402186304179&w=2 http://secunia.com/advisories/15004 http://www.waraxe.us/advisory-42.html https://exchange.xforce.ibmcloud.com/vulnerabilities/20205