Multiple SQL injection vulnerabilities in mail.php in Vallheru before 1.0.7 allow remote attackers to execute arbitrary SQL commands via the (1) id or (2) to parameters. NOTE: some of these details are obtained from third party information.
References
Configurations
History
21 Nov 2024, 00:21
Type | Values Removed | Values Added |
---|---|---|
References | () http://secunia.com/advisories/22812 - Vendor Advisory | |
References | () http://sourceforge.net/project/shownotes.php?release_id=463228 - | |
References | () http://vallheru.svn.sourceforge.net/viewvc/vallheru/vallheru/mail.php?r1=782&r2=781&pathrev=782 - | |
References | () http://www.securityfocus.com/bid/21051 - | |
References | () http://www.vupen.com/english/advisories/2006/4493 - | |
References | () https://exchange.xforce.ibmcloud.com/vulnerabilities/30255 - |
Information
Published : 2006-11-16 00:07
Updated : 2024-11-21 00:21
NVD link : CVE-2006-5926
Mitre link : CVE-2006-5926
CVE.ORG link : CVE-2006-5926
JSON object : View
Products Affected
vallheru
- vallheru
CWE