CVE-2006-1347

Publication date

2006-03-22 01:00:00

Family

mitre

State

PUBLISHED

Description

SQL injection vulnerability in loginfunction.php in Greg Neustaetter gCards 1.45 and earlier allows remote attackers to execute arbitrary SQL commands via the username parameter.