Vulnerabilities > CVE-2006-5917 - Unspecified vulnerability in Omnistar Interactive Omnistar Article Manager
Attack vector
UNKNOWN Attack complexity
UNKNOWN Privileges required
UNKNOWN Confidentiality impact
UNKNOWN Integrity impact
UNKNOWN Availability impact
UNKNOWN Summary
Multiple SQL injection vulnerabilities in OmniStar Article Manager allow remote attackers to execute arbitrary SQL commands via the (1) article_id parameter in (a) articles/comments.php and (b) articles/article.php, and the (2) page_id parameter in (c) articles/pages.php.
Vulnerable Configurations
Part | Description | Count |
---|---|---|
Application | 1 |
References
- http://s-a-p.ca/index.php?page=OurAdvisories&id=10
- http://securitytracker.com/id?1017208
- http://secunia.com/advisories/22794
- http://www.securityfocus.com/bid/20990
- http://securityreason.com/securityalert/1865
- http://www.vupen.com/english/advisories/2006/4449
- https://exchange.xforce.ibmcloud.com/vulnerabilities/30166
- http://www.securityfocus.com/archive/1/451045/100/0/threaded