CVE-2006-2136

CVE-2006-2136

EPSS 1.3%

SQL injection vulnerability in news.php in AZNEWS allows remote attackers to execute arbitrary SQL commands via the ID parameter.

Productos afectados

¿Quieres saber si tu infraestructura está expuesta a esto?

Hablar con TrueHacking →

Referencias

http://evuln.com/vulns/126/http://secunia.com/advisories/19888 http://securitytracker.com/id?1016036 https://exchange.xforce.ibmcloud.com/vulnerabilities/26136 http://www.securityfocus.com/bid/17761 http://www.vupen.com/english/advisories/2006/1579