CVE-2006-0087 Information

Description

SQL injection vulnerability in (1) pages.php and (2) detail.php in Lizard Cart CMS 1.04 allows remote attackers to execute arbitrary SQL commands via the id parameter.

Reference

http://secunia.com/advisories/18297 http://securityreason.com/securityalert/314 http://securitytracker.com/id?1015435 http://www.evuln.com/vulns/12/summary.html http://www.osvdb.org/22199 http://www.osvdb.org/22200 http://www.securityfocus.com/archive/1/420772/100/0/threaded http://www.securityfocus.com/bid/16140 http://www.vupen.com/english/advisories/2006/0029