Multiple SQL injection vulnerabilities in Superfreaker Studios UPublisher 1.0 allow remote attackers to execute arbitrary SQL commands via unspecified vectors in (a) sendarticle.asp and (b) printarticle.asp, and the ID parameter to (c) index.asp and (d) preferences.asp, different vectors than CVE-2006-5888.
References
Link | Resource |
---|---|
http://secunia.com/advisories/22840 | Patch Vendor Advisory |
http://www.securityfocus.com/archive/1/453462/100/0/threaded |
Configurations
History
No history.
Information
Published : 2006-12-08 01:28
Updated : 2024-02-04 17:13
NVD link : CVE-2006-6398
Mitre link : CVE-2006-6398
CVE.ORG link : CVE-2006-6398
JSON object : View
Products Affected
superfreaker_studios
- upublisher
CWE