2 matches found
CVE-2006-1132
SQL injection vulnerability in show.php in vbzoom 1.11 allow remote attackers to execute arbitrary SQL commands via the MainID parameter. NOTE: the SubjectID vector is already covered by CVE-2005-4729...
CVE-2006-1132
CVE-2006-1132 : SQL injection in vbzoom 1.11 shown via the parameter MainID in show.php. Root cause: unsanitized input enabling remote SQL commands. The SubjectID vector is noted as covered by CVE-2005-4729. No exploitation details or patch/remediation are provided in the connected documents.