CVE-2006-0221
CVE-2006-0221 describes an SQL injection in the Admin Panel of Dragon Design Services Network (DDSN) cm3 content manager (CM3CMS), exploitable via the (1) username or (2) password fields on index.asp. The underlying issue is unsafely constructed SQL statements that allow remote attackers to execu...