CVE-2006-6370

2006-12-07T12:28:00
ID CVE-2006-6370
Type cve
Reporter NVD
Modified 2008-09-05T17:14:34

Description

SQL injection vulnerability in forum/modules/gallery/post.php in Invision Gallery 2.0.7 allows remote attackers to cause a denial of service and possibly have other impacts, as demonstrated using a "SELECT BENCHMARK" statement in the img parameter in a doaddcomment operation in index.php.