SQL injection vulnerability in index.php in Image voting 1.0 allows remote malicious users to execute arbitrary SQL commands via the show parameter.
plohni image voting 1.0