CVE-2006-0729 Information

Description

SQL injection vulnerability in functions.php in Teca Diary PE 1.0 allows remote attackers to execute arbitrary SQL commands via the (1) yy (2) mm and (3) dd parameters.

Reference

http://secunia.com/advisories/18876 http://securityreason.com/securityalert/477 http://securitytracker.com/id?1015674 http://www.evuln.com/vulns/75/summary.html http://www.securityfocus.com/archive/1/425892/30/6800/threaded http://www.securityfocus.com/bid/16686 http://www.vupen.com/english/advisories/2006/0615 https://exchange.xforce.ibmcloud.com/vulnerabilities/24643