2007-09-17 17:00:00
mitre
PUBLISHED
SQL injection vulnerability in classes/gelato.class.php in Gelato allows remote attackers to execute arbitrary SQL commands via the post parameter to index.php.