CVE-2006-4072
Multiple SQL injection vulnerabilities affect Club-Nuke [XP] 2.0 LCID 2048. The flaws allow remote attackers to execute arbitrary SQL commands via the (1) haber_id parameter to haber_detay.asp and (2) menu_id parameter to menu.asp. Root cause: unsafely constructed SQL queries leading to injection...