CVE-2006-7115

2007-03-06T01:19:00
ID CVE-2006-7115
Type cve
Reporter cve@mitre.org
Modified 2018-10-16T16:29:00

Description

SQL injection vulnerability in PHPKit 1.6.1 RC2 allows remote attackers to inject arbitrary SQL commands via the catid parameter to include.php when the path parameter is set to faq/faq.php, and other unspecified vectors involving guestbook/print.php.