CVE-2006-4323
CVE-2006-4323 involves an SQL injection in CityForFree’s indexcity 1.0 product, specifically the vulnerable script is list.php. The underlying issue occurs when magic_quotes_gpc is disabled, allowing an attacker to inject arbitrary SQL through the cate_id parameter. Connected documents corroborat...