CVE-2006-3940
CVE-2006-3940 concerns multiple SQL injection vulnerabilities in the phpbb-Auction package. The affected components, as described in the provided documents, allow remote attackers to execute arbitrary SQL commands via the following parameters: (1) ar in auction_room.php and (2) u in auction_store...