Lucene search
MitreCVELIST:CVE-2006-5629HistoryOct 31, 2006 - 10:00 p.m.
CVE-2006-5629
2006-10-3122:00:00
mitre
www.cve.org
Multiple SQL injection vulnerabilities in Hosting Controller 6.1 before Hotfix 3.3 allow remote attackers to execute arbitrary SQL commands via the ForumID parameter in (1) DisableForum.asp and (2) enableForum.asp. NOTE: it was later reported that the vulnerability is present in 6.1 Hotfix 3.3 and earlier.
References
hostingcontroller.com/english/logs/Post-Hotfix-3_3-sec-Patch-ReleaseNotes.html
secunia.com/advisories/22607
secunia.com/advisories/28973
securitytracker.com/id?1017103
www.kapda.ir/advisory-442.html
www.securityfocus.com/archive/1/485028/100/0/threaded
www.securityfocus.com/bid/20661
www.securityfocus.com/bid/26862
www.vupen.com/english/advisories/2006/4296
exchange.xforce.ibmcloud.com/vulnerabilities/39036
www.exploit-db.com/exploits/4730
Related
cve
cve
CVE-2006-5629
2006-10-31 22:07:00
nvd
nvd
CVE-2006-5629
2006-10-31 22:07:00
nessus
nessus
Hosting Controller Multiple Script ForumID Parameter SQL Injection
2006-10-23 00:00:00