CVE-2006-5638 Information

Description

Multiple SQL injection vulnerabilities in cherche.php in PHPMyRing 4.2.1 and earlier allow remote attackers to execute arbitrary SQL commands via the (1) limite and (2) mots parameters.

Reference

http://secunia.com/advisories/22620 http://www.securityfocus.com/bid/20792 http://www.vupen.com/english/advisories/2006/4261 https://exchange.xforce.ibmcloud.com/vulnerabilities/29887 https://www.exploit-db.com/exploits/2679