This is a technical writeup describing an SQL injection vulnerability in Ananda Image Gallery. The vulnerability is demonstrated via a URL parameter manipulation, but no functional exploit code is provided.
Classification
Writeup 80%
Attack Type
Sqli
Complexity
Trivial
Reliability
Theoretical
Target:Ananda Image Gallery (version not specified)
No auth needed
Prerequisites:Access to the vulnerable web application