Vulnerabilities > CVE-2006-5907 - SQL Injection vulnerability in Jean-Christophe Ramos BAN and Pls-Bannieres
Attack vector
NETWORK Attack complexity
LOW Privileges required
NONE Confidentiality impact
PARTIAL Integrity impact
PARTIAL Availability impact
PARTIAL Summary
SQL injection vulnerability in modules/bannieres/bannieres.php in Jean-Christophe Ramos SCRIPT BANNIERES (aka ban 0.1 and PLS-Bannieres 1.21) allows remote attackers to execute arbitrary SQL commands via the id parameter.
Vulnerable Configurations
Part | Description | Count |
---|---|---|
Application | 2 |