Invision Gallery Index.PHP SQL Injection Vulnerability

Invision Gallery Index.PHP SQL Injection Vulnerability

No exploit is required.

The following proof of concept URI is available:
http://www.example.com/index.php?automodule=gallery&cmd=sc&cat=26&sort_key=date&order_key=DESC&prune_key=30&st='[SQL]