CVE-2006-0608 | Vulnerability Database | Aqua Security

Multiple SQL injection vulnerabilities in Hinton Design phphd 1.0 allow remote attackers to execute arbitrary SQL commands via (1) the username parameter to check.php or (2) unknown attack vectors to scripts that display information from the database.

Affected Software

Name	Vendor	Start Version	End Version
Phphd	Hinton_design	1.0 (including)	1.0 (including)

References

http://secunia.com/advisories/18793
http://www.evuln.com/vulns/60/summary.html
http://www.osvdb.org/23025
http://www.osvdb.org/23028
http://www.securityfocus.com/archive/1/424827/100/0/threaded
http://www.securityfocus.com/bid/16586
https://exchange.xforce.ibmcloud.com/vulnerabilities/24508
https://exchange.xforce.ibmcloud.com/vulnerabilities/24515
http://secunia.com/advisories/18793
http://www.evuln.com/vulns/60/summary.html
http://www.osvdb.org/23025
http://www.osvdb.org/23028
http://www.securityfocus.com/archive/1/424827/100/0/threaded
http://www.securityfocus.com/bid/16586
https://exchange.xforce.ibmcloud.com/vulnerabilities/24508
https://exchange.xforce.ibmcloud.com/vulnerabilities/24515

NVD	https://nvd.nist.gov/vuln/detail/CVE-2006-0608
CWE	https://cwe.mitre.org/data/definitions/NVD-Other.html