CVE-2006-6935
Portix-PHP 0.4.2 is affected by an SQL injection in the login component, exploitable via the username and passwd fields, allowing remote attackers to execute arbitrary SQL commands. The issue is tied to Portix-PHP version 0.4.2 and is addressed by updating to a fixed version (per PT-2007-1215 rec...