CVE-2006-4035 Information

Description

SQL injection vulnerability in counterchaos.php in CounterChaos 0.48c and earlier allows remote attackers to execute arbitrary SQL commands via the Referer HTTP header.

Reference

http://archives.neohapsis.com/archives/bugtraq/2006-08/0080.html http://secunia.com/advisories/21356 http://securityreason.com/securityalert/1350 http://www.frsirt.com/english/reference/17541 http://www.securityfocus.com/bid/19344 http://www.vupen.com/english/advisories/2006/3153 https://exchange.xforce.ibmcloud.com/vulnerabilities/28222