CVE-2006-4141 Information
Feb 14, 2021
cve
Description
SQL injection vulnerability in news.php in Virtual War (VWar) 1.5.0 and earlier allows remote attackers to execute arbitrary SQL commands via the (1) sortby and (2) sortorder parameters.
Reference
http://securityreason.com/securityalert/1383 http://www.securityfocus.com/archive/1/442880/100/0/threaded https://exchange.xforce.ibmcloud.com/vulnerabilities/28332
Share on: