CVE-2006-1571

2006-04-01T00:04:00
ID CVE-2006-1571
Type cve
Reporter cve@mitre.org
Modified 2018-10-18T16:33:00

Description

Multiple SQL injection vulnerabilities in loginprocess.php in qliteNews 2005.07.01 allow remote attackers to execute arbitrary SQL commands via the (1) username or (2) password parameters. Successful exploitation requires "magic_quotes_gpc" to be disabled.