CVE-2006-2039 | Vulnerability Database | Aqua Security

Multiple SQL injection vulnerabilities in the osTicket module in Help Center Live before 2.1.0 allow remote attackers to execute arbitrary SQL commands via unknown vectors.

Affected Software

Name	Vendor	Start Version	End Version
Help_center_live	Ubertec	1.0 (including)	1.0 (including)
Help_center_live	Ubertec	1.2 (including)	1.2 (including)
Help_center_live	Ubertec	1.2.1 (including)	1.2.1 (including)
Help_center_live	Ubertec	1.2.2 (including)	1.2.2 (including)
Help_center_live	Ubertec	1.2.3 (including)	1.2.3 (including)
Help_center_live	Ubertec	1.2.4 (including)	1.2.4 (including)
Help_center_live	Ubertec	1.2.5 (including)	1.2.5 (including)
Help_center_live	Ubertec	1.2.6 (including)	1.2.6 (including)
Help_center_live	Ubertec	1.2.7 (including)	1.2.7 (including)
Help_center_live	Ubertec	1.2.8 (including)	1.2.8 (including)
Help_center_live	Ubertec	2.0 (including)	2.0 (including)

References

http://secunia.com/advisories/19776
http://sourceforge.net/project/shownotes.php?release_id=411859
http://www.securityfocus.com/bid/17676
http://www.vupen.com/english/advisories/2006/1492
https://exchange.xforce.ibmcloud.com/vulnerabilities/26040

NVD	https://nvd.nist.gov/vuln/detail/CVE-2006-2039
CWE	https://cwe.mitre.org/data/definitions/NVD-Other.html