CVE-2006-3139

2006-06-22T22:06:00
ID CVE-2006-3139
Type cve
Reporter cve@mitre.org
Modified 2018-10-18T16:46:00

Description

Multiple SQL injection vulnerabilities in war.php in Virtual War (VWar) 1.5.0 R14 and earlier allow remote attackers to execute arbitrary SQL commands via the (1) s, (2) showgame, (3) sortorder, and (4) sortby parameters.