Vulnerabilities > CVE-2006-0942 - Unspecified vulnerability in Pwsphp

047910
CVSS 0.0 - NONE
Attack vector
UNKNOWN
Attack complexity
UNKNOWN
Privileges required
UNKNOWN
Confidentiality impact
UNKNOWN
Integrity impact
UNKNOWN
Availability impact
UNKNOWN
pwsphp
exploit available
NVD
Published: 2006-03-01
Updated: 2024-11-21

Summary

SQL injection vulnerability in profil.php in PwsPHP 1.2.3, and possibly earlier versions, allows remote attackers to execute arbitrary SQL commands via the aff_news_form parameter, a different vulnerability than CVE-2005-1509.

Vulnerable Configurations

Part Description Count
Application
Pwsphp
1

Exploit-Db

descriptionPwsPHP 1.2.3 Index.PHP SQL Injection Vulnerability. CVE-2006-0942. Webapps exploit for php platform
idEDB-ID:27175
last seen2016-02-03
modified2006-02-09
published2006-02-09
reporterpapipsycho
sourcehttps://www.exploit-db.com/download/27175/
titlePwsPHP 1.2.3 Index.PHP SQL Injection Vulnerability

References