2 matches found
CVE-2006-6446
SQL injection vulnerability in index.php in iWare Professional 5.0.4, when magicquotesgpc is disabled, allows remote attackers to execute arbitrary SQL commands via the D parameter. NOTE: The provenance of this information is unknown; the details are obtained solely from third party information...
CVE-2006-6446
CVE-2006-6446 describes an SQL injection vulnerability in index.php of iWare Professional 5.0.4, triggered when magic_quotes_gpc is disabled. An attacker can remotely execute arbitrary SQL commands via the D parameter. The entry notes the provenance as third‑party information and provides CVSS 2....