CVE-2006-1001 Information

Description

SQL injection vulnerability in the board module in LanSuite LanParty Intranet System 2.0.6 and 2.1.0 beta allows remote attackers to execute arbitrary SQL commands via the fid parameter.

Reference

http://secunia.com/advisories/19048 http://www.osvdb.org/23533 http://www.securityfocus.com/bid/16836 http://www.vupen.com/english/advisories/2006/0747 https://exchange.xforce.ibmcloud.com/vulnerabilities/24940 https://www.exploit-db.com/exploits/1526