CVE-2006-2959
CVE-2006-2959
SQL injection vulnerability in inc_header.asp in Snitz Forum 3.4.05 and earlier allows remote attackers to execute arbitrary SQL commands via the %strCookieURL%.GROUP parameter in a cookie.
Affected products
n/a · n/aWant to know if your infrastructure is exposed to this?
Talk to TrueHacking →References
http://forum.snitz.com/forum/topic.asp?TOPIC_ID=62049http://securityreason.com/securityalert/1075http://securitytracker.com/id?1016267https://exchange.xforce.ibmcloud.com/vulnerabilities/27080http://www.kapda.ir/advisory-343.htmlhttp://www.securityfocus.com/archive/1/436702/100/0/threadedhttp://www.securityfocus.com/bid/18362