CVE-2006-0809 Information

Description

Multiple SQL injection vulnerabilities in Skate Board 0.9 allow remote attackers to execute arbitrary SQL commands via the (1) usern parameter in (a) sendpass.php and the (2) usern and (3) passwd parameters and (4) sf_cookie cookie in (b) login.php and (c) logged.php.

Reference

http://evuln.com/vulns/84/summary.html http://secunia.com/advisories/18978 http://securityreason.com/securityalert/540 http://www.osvdb.org/23301 http://www.osvdb.org/23302 http://www.osvdb.org/23303 http://www.securityfocus.com/archive/1/426658/30/0/threaded http://www.securityfocus.com/bid/16936 https://exchange.xforce.ibmcloud.com/vulnerabilities/24778 https://exchange.xforce.ibmcloud.com/vulnerabilities/24779