SQL injection vulnerability in showphoto.php in PhotoPost PHP Pro 4.6 and earlier allows remote attackers to gain unauthorized access via the photo variable.Referenceshttps://exchange.xforce.ibmcloud.com/vulnerabilities/15008http://www.securiteam.com/securitynews/5KP010UC0W.htmlhttp://www.securityfocus.com/bid/9557http://marc.info/?l=bugtraq&m=107582512023998&w=2
