2 matches found
CVE-2006-6339
SQL injection vulnerability in sites/index.php in deV!Lz Clanportal DZCP before 1.3.6.1 allows remote attackers to execute arbitrary SQL commands via the show element in a GET request...
CVE-2006-6339
The CVE-2006-6339 entry describes an SQL injection in deV!L`z Clanportal (DZCP) prior to version 1.3.6.1, exploitable via the show parameter in a GET request. This allows remote attackers to execute arbitrary SQL commands. Affected software/function: sites/index.php in DZCP. Root cause: insuffici...