CVE-2006-1423 Information

Description

SQL injection vulnerability in showflat.php in UBB.threads 5.5.1 6.0 br5 6.0.1 6.0.2 and earlier allows remote attackers to execute arbitrary SQL commands via the Number parameter.

Reference

http://securityreason.com/securityalert/628 http://www.securityfocus.com/archive/1/428833/100/0/threaded