CVE-2006-2135

2006-05-02T10:02:00
ID CVE-2006-2135
Type cve
Reporter cve@mitre.org
Modified 2017-07-20T01:31:00

Description

SQL injection vulnerability in login.php in Ruperts News allows remote attackers to execute arbitrary SQL commands via the username parameter. Successful exploitation requires that magic_quotes_gpc is set to off.