CVE-2006-2835

Publication date

2006-06-06 20:03:00

Family

mitre

State

PUBLISHED

Description

SQL injection vulnerability in saphplesson 2.0 allows remote attackers to execute arbitrary SQL commands via the (1) forumid parameter in add.php and (2) lessid parameter in show.php.