CVE-2006-6349
CVE-2006-6349 covers multiple SQL injection vulnerabilities in PWP Technologies The Classified Ad System. An attacker can remotely execute arbitrary SQL via (1) the main parameter in a view action (includes/mainpage/view.asp) in default.asp or (2) a query in the search engine. The NVD entry cites...