CVE-2006-1585 Information

Description

Multiple SQL injection vulnerabilities in MonAlbum 0.8.7 allow remote attackers to execute arbitrary SQL commands via (1) the pc parameter in (a) index.php and (2) pnom (3) pcourriel and (4) pcommentaire parameters in (b) image_agrandir.php.

Reference

http://secunia.com/advisories/19503 http://securityreason.com/securityalert/660 http://www.bash-x.net/undef/adv/monalbum.html http://www.securityfocus.com/archive/1/429475/100/0/threaded http://www.securityfocus.com/bid/17327 http://www.vupen.com/english/advisories/2006/1206 https://exchange.xforce.ibmcloud.com/vulnerabilities/25572