CVE-2006-2126 Information

Description

SQL injection vulnerability in pocategories.php in MaxTrade 1.0.1 and earlier allows remote attackers to execute arbitrary SQL commands via the (1) categori and (2) stranica parameters.

Reference

http://pridels0.blogspot.com/2006/04/maxtrade-sql-inj.html http://secunia.com/advisories/19876 http://www.osvdb.org/25122 http://www.securityfocus.com/bid/17765 http://www.vupen.com/english/advisories/2006/1581 https://exchange.xforce.ibmcloud.com/vulnerabilities/26171