SQL injection vulnerability in read.php in ToyLog 0.1 allows remote malicious users to execute arbitrary SQL commands via the idm parameter.
santostefano giovanni toylog 0.1