CVE-2006-5287
CVE-2006-5287 affects Xeobook 0.93 in sign.php, where multiple SQL injection flaws exist. Remote attackers could exploit the following inputs to inject SQL: the User-Agent HTTP header and the parameters gb_entry_text, gb_location, gb_fullname, and gb_sex. The vulnerability permits arbitrary SQL c...