CVE-2006-5184

2006-10-10T04:06:00
ID CVE-2006-5184
Type cve
Reporter cve@mitre.org
Modified 2011-03-08T02:42:00

Description

SQL injection vulnerability in PKR Internet Taskjitsu before 2.0.6 allows remote attackers to execute arbitrary SQL commands via the key parameter, when the limit query parameter is set to customerid. This vulnerability is addressed in the following product release: PKR Internet, Taskjitsu, 2.0.6