3 matches found
CVE-2006-7089
SQL injection vulnerability in connexion.php in Ban 0.1 allows remote attackers to execute arbitrary SQL commands via the id parameter...
CVE-2006-7089
CVE-2006-7089: A SQL injection vulnerability affects Ban 0.1 in the file connexion.php, exploitable via the id parameter to execute arbitrary SQL commands. The vulnerability is due to improper input handling in the PHP script. Exploitation status or in-the-wild details are not provided in the sup...
CVE-2006-5906
The CVE-2006-5906 issue affects Jean-Christophe Ramos SCRIPT BANNIERES (aka ban 0.1, PLS-Bannieres 1.21) and concerns a remote file inclusion in modules/bannieres/bannieres.php. The vulnerability arises from the chemin parameter, which could be used to supply a URL that leads to arbitrary PHP cod...