|
|
CVE Reference: CVE-2006-1111 |
|
| NOTE: The text on this page is written by CVE MITRE and reflects neither the opinions of Secunia or the results of our research. All data on this page is written and maintained by CVE MITRE. | |
|
Original Page at CVE MITRE: CVE-2006-1111 |
|
|
Description: Aztek Forum 4.0 allows remote attackers to obtain sensitive information via a "*/*" in the msg parameter to index.php, which reveals usernames and passwords in a MySQL error message, possibly due to a forced SQL error or SQL injection. |
|
|
CVE Status: Candidate |
|
|
References: XF http://xforce.iss.net/xforce/xfdb/25036 OSVDB 23611 MISC http://www.milw0rm.com/exploits/1547 BUGTRAQ http://www.securityfocus.com/archive/1/archive/1/426650/100/0/threaded BID 16938 |
|
| Return to the previous page. |
