CVE-2006-6147 | Vulnerability Database | Aqua Security

Multiple SQL injection vulnerabilities in JiRos Links Manager allow remote attackers to execute arbitrary SQL commands via the (1) LinkID parameter to openlink.asp or the (2) CategoryID parameter to viewlinks.asp.

Affected Software

Name	Vendor	Start Version	End Version
Links_manager	Jiros	1.0 (including)	1.0 (including)

References

http://secunia.com/advisories/23063
http://securitytracker.com/id?1017280
http://www.frsirt.com/english/reference-2006-4664-1.php
http://www.securityfocus.com/archive/1/452265/100/0/threaded
http://www.securityfocus.com/bid/21226
http://www.vupen.com/english/advisories/2006/4664
https://exchange.xforce.ibmcloud.com/vulnerabilities/30462
http://secunia.com/advisories/23063
http://securitytracker.com/id?1017280
http://www.frsirt.com/english/reference-2006-4664-1.php
http://www.securityfocus.com/archive/1/452265/100/0/threaded
http://www.securityfocus.com/bid/21226
http://www.vupen.com/english/advisories/2006/4664
https://exchange.xforce.ibmcloud.com/vulnerabilities/30462

NVD	https://nvd.nist.gov/vuln/detail/CVE-2006-6147
CWE	https://cwe.mitre.org/data/definitions/NVD-Other.html