CVE-2006-6369
CVE-2006-6369 is an SQL injection in the Invision Community Blog Mod 1.2.4. The flaw is in the file lib/entry_reply_entry.php and is exploitable via the eid parameter when the message is previewed, allowing remote attackers to execute arbitrary SQL commands. The connected documents provide the af...