CVE-2006-7092

2007-03-02T16:18:00
ID CVE-2006-7092
Type cve
Reporter NVD
Modified 2011-03-07T21:47:51

Description

SQL injection vulnerability in includes/mambo.php in Mambo LaiThai 4.5.4 SP2 and earlier allows remote attackers to execute arbitrary SQL commands via the usercookie[password] cookie parameter.