CVE-2006-0939 Information

Description

SQL injection vulnerability in DCI-Taskeen 1.03 allows remote attackers to execute arbitrary SQL commands via the (1) id or (2) action parameter to (a) basket.php or (3) id or (4) page parameter to (b) cat.php.

Reference

http://securityreason.com/securityalert/495 http://securitytracker.com/id?1015685 http://www.securityfocus.com/archive/1/426082 http://www.securityfocus.com/bid/16828 https://exchange.xforce.ibmcloud.com/vulnerabilities/24963