CVE-2006-1000

2006-03-06T20:06:00
ID CVE-2006-1000
Type cve
Reporter cve@mitre.org
Modified 2018-10-18T16:30:00

Description

Multiple SQL injection vulnerabilities in Pentacle In-Out Board 3.0 and earlier allow remote attackers to execute arbitrary SQL commands and bypass authentication via the (1) newsid parameter to newsdetailsview.asp and (2) password parameter to login.asp.