CVE-2005-0805

Name of the Vulnerable Software and Affected Versions Subdreamer Light (affected versions not specified)

Description The issue allows remote attackers to execute arbitrary SQL commands via certain parameters. This is demonstrated using the imageid parameter, which is not properly handled by imagegallery.php. The vulnerability is specifically related to the use of global variables when magic quotes gpc is enabled.

Recommendations At the moment, there is no information about a newer version that contains a fix for this vulnerability.