CVE-2006-6358

2006-12-07T11:28:00
ID CVE-2006-6358
Type cve
Reporter cve@mitre.org
Modified 2017-07-29T01:29:00

Description

SQL injection vulnerability in the login function in auth.inc in Stefan Frech online-bookmarks 0.6.12 allows remote attackers to execute arbitrary SQL commands via the (1) username and possibly the (2) password parameter. NOTE: some of these details are obtained from third party information.