← back
CVE-2006-5206

CVE-2006-5206

EPSS 1.1%
SQL injection vulnerability in Invision Gallery 2.0.7 allows remote attackers to execute arbitrary SQL commands via the album parameter in (1) index.php and (2) forum/index.php, when the rate command in the gallery automodule is used.
Affected products
n/a · n/a
public PoCs found1
cve_referencewww.exploit-db.com/exploits/2473unverified
⚠ Public resources, to assess the exposure of systems you control or are authorized to test. Test only with authorization.

Want to know if your infrastructure is exposed to this?

Talk to TrueHacking →
References
http://secunia.com/advisories/22400https://exchange.xforce.ibmcloud.com/vulnerabilities/29333https://www.exploit-db.com/exploits/2473http://www.securityfocus.com/bid/20327