CVE-2006-4585

2006-09-06T22:04:00
ID CVE-2006-4585
Type cve
Reporter cve@mitre.org
Modified 2018-10-17T21:38:00

Description

SQL injection vulnerability in admin/editer.php in Tr Forum 2.0 allows remote authenticated users to execute arbitrary SQL commands via the id2 parameter. NOTE: this can be leveraged with other Tr Forum vulnerabilities to allow unauthenticated attackers to gain privileges.