CVE-2006-6269

Infinitytechs Restaurants CM is affected by SQL injection in three parameters: id (rating.asp), mealid (meal_rest.asp), and resid (res_details.asp). The underlying issue is improper handling of input in SQL queries, enabling remote attackers to craft arbitrary SQL commands. The CVE entry notes a ...