2 matches found
InTouch index.php user Parameter SQL Injection - Ver2 (CVE-2006-0088)
An SQL injection vulnerability has been reported in inTouch. Successful exploitation of this vulnerability could allow a remote attacker to execute arbitrary SQL commands on the affected system...
CVE-2006-0088
The CVE-2006-0088 entry concerns InTouch 0.5.1 Alpha, where an SQL injection vulnerability in intouch.lib.php allows remote attackers to execute arbitrary SQL commands via the user parameter. The connected advisories corroborate this by describing an SQL injection in InTouch (Ver2) and noting the...