CVE-2006-3309 | Vulnerability Database | Aqua Security

NVD

https://nvd.nist.gov/vuln/detail/CVE-2006-3309

CWE

https://cwe.mitre.org/data/definitions/NVD-Other.html

SQL injection vulnerability in SPT–ForumTopics.php in Scout Portal Toolkit (SPT) 1.4.0 and earlier allows remote attackers to execute arbitrary SQL commands via the forumid parameter.

Affected Software

Name	Vendor	Start Version	End Version
Scout_portal_toolkit	Internet_scout_project	*	1.4.0 (including)

References

http://secunia.com/advisories/20857
http://www.osvdb.org/26870
http://www.securityfocus.com/bid/18688
http://www.vupen.com/english/advisories/2006/2560
https://exchange.xforce.ibmcloud.com/vulnerabilities/27401
https://www.exploit-db.com/exploits/1957
http://secunia.com/advisories/20857
http://www.osvdb.org/26870
http://www.securityfocus.com/bid/18688
http://www.vupen.com/english/advisories/2006/2560
https://exchange.xforce.ibmcloud.com/vulnerabilities/27401
https://www.exploit-db.com/exploits/1957