CVE-2006-6274
Summary: CVE-2006-6274 describes a SQL injection in the articles.asp path of Expinion.net iNews (Publisher/iNP) v2.5 and earlier, with possible scope to News Manager. The root cause is unsafely constructed SQL via the ex parameter, enabling remote attackers to execute arbitrary SQL commands. The ...