|
|
CVE Reference: CVE-2006-5509 |
|
| NOTE: The text on this page is written by CVE MITRE and reflects neither the opinions of Secunia or the results of our research. All data on this page is written and maintained by CVE MITRE. | |
|
Original Page at CVE MITRE: CVE-2006-5509 |
|
|
Description: Eval injection vulnerability in addentry.php in WoltLab Burning Book 1.1.2 allows remote attackers to execute arbitrary PHP code via crafted POST requests that store PHP code in a database that is later processed by eval, as demonstrated using SQL injection via the n parameter. |
|
|
CVE Status: Candidate |
|
|
References: XF http://xforce.iss.net/xforce/xfdb/29599 SREASON http://securityreason.com/securityalert/1774 SAID Secunia Advisory: SA22442 MISC http://www.security.nnov.ru/Odocument711.html BUGTRAQ http://www.securityfocus.com/archive/1/archive/1/448796/100/100/threaded BID 20563 |
|
| Return to the previous page. |
