The Address Book Login Multiple Field SQL Injection

2006-08-07T10:49:41
ID OSVDB:27810
Type osvdb
Reporter OSVDB
Modified 2006-08-07T10:49:41

Description

Technical Description

This vulnerability is only present when the magic_quotes_gpc PHP option is 'off'.

References:

Vendor URL: http://www.corvalis.net/address/ Vendor URL: http://sourceforge.net/projects/theaddressbook Vendor Specific News/Changelog Entry: http://sourceforge.net/project/shownotes.php?release_id=437760&group_id=172286 Secunia Advisory ID:21364 FrSIRT Advisory: ADV-2006-3176 CVE-2006-4056