CVE-2006-3236

2006-06-27T06:05:00
ID CVE-2006-3236
Type cve
Reporter NVD
Modified 2017-07-19T21:32:09

Description

Multiple SQL injection vulnerabilities in thinkWMS 1.0 and earlier allow remote attackers to execute arbitrary SQL commands via the (1) id parameter in (a) index.php or (b) printarticle.php, and the (2) catid parameter in index.php.