CVE-2006-0692
CVE-2006-0692 affects Carey Briggs PHP/MySQL Timesheet (versions 1 and 2). The vulnerability is SQL injection in the server-side code handling the parameters yr, month, day, and job passed to index.php and changehrs.php, allowing remote attackers to execute arbitrary SQL commands. Root cause is u...