SQL injection vulnerability in albumdetail.php in Opial 1.0 allows remote malicious users to execute arbitrary SQL commands via the albumid parameter.
shalwan opial 1.0