CVE-2006-4957 Information
Feb 14, 2021
cve
Description
SQL injection vulnerability in the GetMember function in functions.php in MyReview 1.9.4 allows remote attackers to execute arbitrary SQL commands via the email parameter to Admin.php.
Reference
http://secunia.com/advisories/21991 http://www.securityfocus.com/bid/20105 http://www.vupen.com/english/advisories/2006/3716 https://exchange.xforce.ibmcloud.com/vulnerabilities/29029 https://www.exploit-db.com/exploits/2397
Share on: