CVE-2006-3919 Information

Description

SQL injection vulnerability in index.php in SD Studio CMS allows remote attackers to execute arbitrary SQL commands via the (1) news_id (2) tid and (3) page_id parameters.

Reference

http://secunia.com/advisories/21207 http://security-net.biz/adv/D24706a.txt http://www.securityfocus.com/bid/19173 http://www.vupen.com/english/advisories/2006/2984 https://exchange.xforce.ibmcloud.com/vulnerabilities/27963