SQL injection vulnerability in PhotoPost PHP Pro 5.x may allow remote attackers to execute arbitrary SQL commands via (1) the sl parameter to showmembers.php or (2) the photo parameter to showphoto.php.
Exploit prediction scoring system (EPSS) score
EPSS Score 0.026
EPSS Ranking 83.6%