CVE-2006-3565 Information

Description

SQL injection vulnerability in search.results.php in HiveMail 1.3 and earlier allows remote attackers to execute arbitrary SQL commands via the fields[] parameter.

Reference

http://pridels0.blogspot.com/2006/07/hivemail-vuln.html http://secunia.com/advisories/20993 http://securitytracker.com/id?1016531 http://www.osvdb.org/27099 http://www.securityfocus.com/bid/18949 https://exchange.xforce.ibmcloud.com/vulnerabilities/27694