CVE-2008-6182

Name of the Vulnerable Software and Affected Versions Ignite Gallery (com ignitegallery) versions 0.8.0 through 0.8.3

Description The issue allows remote attackers to execute arbitrary SQL commands via the gallery parameter in a view action to "index.php". This can lead to unauthorized access and manipulation of database content.

Recommendations For versions 0.8.0 through 0.8.3, update to a version that contains a fix for this issue. As a temporary workaround, consider restricting access to the index.php endpoint to minimize the risk of exploitation. Avoid using the gallery parameter in the affected API endpoint until the issue is resolved.