info
discussion
exploit
solution
references
White Album Pictures.PHP SQL Injection Vulnerability
No exploit is required.
An example URI has been provided:
http://www.example.com/folder/pictures.php?dir=[SQL]
Privacy Statement
Copyright 2010, SecurityFocus
