2 matches found
CVE-2006-4783
SQL injection vulnerability in squads.php in WebSPELL 4.01.01 and earlier, when registerglobals is enabled, allows remote attackers to execute arbitrary SQL commands via the squadID parameter...
CVE-2006-4783
WebSPELL 4.01.01 and earlier are affected by an SQL injection in squads.php when register_globals is enabled. The vulnerability allows remote attackers to inject arbitrary SQL via the squadID parameter, enabling unauthorized database commands. The available sources confirm the affected file and p...