CVE-2006-6072 Information

Description

SQL injection vulnerability in bpg/publications_list.asp in BPG-InfoTech Easy Publisher and Smart Publisher//Pro 2.7.7 allows remote attackers to execute arbitrary SQL commands via the vjob parameter. NOTE: the provenance of this information is unknown; the details are obtained from third party information.

Reference

http://secunia.com/advisories/22888 http://www.securityfocus.com/bid/21094 http://www.vupen.com/english/advisories/2006/4514