CVE-2006-5140 Information

Description

SQL injection vulnerability in display.php in Lappy512 PHP Krazy Image Host Script (phpkimagehost) 0.7a allows remote attackers to execute arbitrary SQL commands via the id parameter.

Reference

http://www.securityfocus.com/bid/20270 https://exchange.xforce.ibmcloud.com/vulnerabilities/29270 https://www.exploit-db.com/exploits/2456