Multiple SQL injection vulnerabilities in phpGedView prior to 2.65 allow remote malicious users to execute arbitrary SQL via (1) timeline.php and (2) placelist.php.
phpgedview phpgedview