CVE-2006-4737 | Vulnerability Database | Aqua Security

NVD

https://nvd.nist.gov/vuln/detail/CVE-2006-4737

CWE

https://cwe.mitre.org/data/definitions/NVD-Other.html

SQL injection vulnerability in index.php in Jetbox CMS allows remote attackers to inject arbitrary web script or HTML via the item parameter. NOTE: The view vector is already covered by CVE-2006-3586.2.

Affected Software

Name	Vendor	Start Version	End Version
Jetbox_cms	Jetbox	2.1_sr1 (including)	2.1_sr1 (including)

References

http://securityreason.com/securityalert/1562
http://www.securityfocus.com/archive/1/445652/100/0/threaded
http://www.securityfocus.com/bid/19303
https://exchange.xforce.ibmcloud.com/vulnerabilities/28841
http://securityreason.com/securityalert/1562
http://www.securityfocus.com/archive/1/445652/100/0/threaded
http://www.securityfocus.com/bid/19303
https://exchange.xforce.ibmcloud.com/vulnerabilities/28841