CVE-2006-3618 Information

Description

SQL injection vulnerability in pblguestbook.php in Pixelated By Lev (PBL) Guestbook 1.32 and earlier allows remote attackers to execute arbitrary SQL commands via the (1) name (2) email (3) website (4) comments (5) rate and (6) private parameters.

Reference

http://www.neosecurityteam.net/index.php?action=advisories&id=23 http://www.securityfocus.com/archive/1/439486/100/0/threaded https://exchange.xforce.ibmcloud.com/vulnerabilities/27624