CVE-2006-3318
N/A
N/A
Summary
SQL injection vulnerability in register.php for phpRaid 3.0.6 and possibly other versions, when the authorization type is phpraid, allows remote attackers to execute arbitrary SQL commands via the (1) username and (2) email parameters.
Affected Software
| Vendor | Product | Version Range | Status |
|---|---|---|---|
| n/a | n/a | n/a | affected |
Weaknesses
- n/a
ADP Enrichment
CVE Program Container
Additional References
- http://secunia.com/secunia_research/2006-47/advisory/
- https://exchange.xforce.ibmcloud.com/vulnerabilities/27459
- http://www.vupen.com/english/advisories/2006/2593
- http://www.securityfocus.com/archive/1/438706/100/0/threaded
- http://securityreason.com/securityalert/1173
- http://secunia.com/advisories/20865
References
- http://secunia.com/secunia_research/2006-47/advisory/
- https://exchange.xforce.ibmcloud.com/vulnerabilities/27459
- http://www.vupen.com/english/advisories/2006/2593
- http://www.securityfocus.com/archive/1/438706/100/0/threaded
- http://securityreason.com/securityalert/1173
- http://secunia.com/advisories/20865
Feedback
Was this page helpful?
Glad to hear it! Please tell us how we can improve.
Sorry to hear that. Please tell us how we can improve.