CVE-2006-4876 Information

Description

Multiple SQL injection vulnerabilities in Jupiter CMS allow remote attackers to execute arbitrary SQL commands via (1) the user name during login or the (2) key or (3) fpwusername parameters in modules/register.

Reference

http://securityreason.com/securityalert/1608 http://www.securityfocus.com/archive/1/446064/100/0/threaded http://www.securityfocus.com/bid/20048