SQL injection vulnerability in Gforge 4.6.99 and earlier allows remote attackers to execute arbitrary SQL commands via unspecified parameters, related to RSS exports.Referenceshttp://www.debian.org/security/2008/dsa-1459https://exchange.xforce.ibmcloud.com/vulnerabilities/39666http://www.securityfocus.com/bid/27266http://www.vupen.com/english/advisories/2008/0115http://secunia.com/advisories/28395http://secunia.com/advisories/28451
