CVE-2006-1613 Information

Feb 14, 2021 cve

Description

Multiple SQL injection vulnerabilities in aWebNews 1.0 allow remote attackers to execute arbitrary SQL commands via the (1) user123 variable in (a) login.php or (b) fpass.php; or (2) cid parameter to (c) visview.php.

Reference

http://evuln.com/vulns/116/summary.html http://secunia.com/advisories/19487 http://www.osvdb.org/24334 http://www.osvdb.org/24335 http://www.osvdb.org/24336 http://www.securityfocus.com/archive/1/431007/100/0/threaded http://www.vupen.com/english/advisories/2006/1196 https://exchange.xforce.ibmcloud.com/vulnerabilities/25590

Share on: