SQL injection vulnerability in wallpaper.php in Wallpaper Website (Wallpaper Complete Website) 1.0.09 allows remote attackers to execute arbitrary SQL commands via the wallpaperid parameter.Referenceshttps://www.exploit-db.com/exploits/2835http://www.securityfocus.com/bid/21274http://www.vupen.com/english/advisories/2006/4687https://exchange.xforce.ibmcloud.com/vulnerabilities/30528http://secunia.com/advisories/23084
