2 matches found
CVE-2006-3565
SQL injection vulnerability in search.results.php in HiveMail 1.3 and earlier allows remote attackers to execute arbitrary SQL commands via the fields parameter...
CVE-2006-3565
The CVE-2006-3565 entry describes an SQL injection in HiveMail (version 1.3 and earlier) that affects search.results.php via the fields[] parameter, allowing a remote attacker to execute arbitrary SQL commands. The vulnerability is categorized with a high base score (7.5, CVSSv2: AV:N/AC:L/Au:N/C...