CVE-2006-3727
Multiple SQL injection vulnerabilities in Eskolar CMS 0.9.0.0 allow remote attackers to execute arbitrary SQL commands via the 1 gr1id, 2 gr2id, 3 gr3id, and 4 docid parameters in a index.php; the 5 uid and 6 pwd parameters in b php/esa.php; and possibly other vectors related to files in php/lib/...