442 matches found
CVE-2006-1555
VSNS Lemon 3.2.0 allows remote attackers to bypass authentication and access password-protected articles by setting the vsnstopicid cookie to the targeted topic...
CVE-2006-1553
VSNS Lemon 3.2.0 is affected by CVE-2006-1553 due to an SQL injection in functions/final_functions.php when magic_quotes_gpc is disabled. The vulnerable parameter is id, enabling remote attackers to inject arbitrary SQL commands. This is a server-side input validation flaw in the PHP code path ha...