CVE-2006-3996
CVE-2006-3996 affects ATutor 1.5.3.1 and earlier in the file links/index.php. The vulnerability is an SQL injection in the desc and asc parameters, allowing remote authenticated users to execute arbitrary SQL commands. The NVD records a CVSS v2 base score of 6.5 (MEDIUM) with network attack vecto...