CVE-2006-0240 Information

Description

Multiple SQL injection vulnerabilities in Simple Blog 2.1 allow remote attackers to execute arbitrary SQL commands via the month parameter in an archives view operation and possibly certain other parameters in unspecified scripts.

Reference

http://secunia.com/advisories/18488 http://www.hackerscenter.com/archive/view.asp?id=21926 http://www.osvdb.org/22447 http://www.securityfocus.com/archive/1/422102/100/0/threaded http://www.securityfocus.com/bid/16243 http://www.vupen.com/english/advisories/2006/0194 https://exchange.xforce.ibmcloud.com/vulnerabilities/24155