CVE-2006-1481

SQL injection vulnerability in search.php in PHP Ticket 0.71 allows remote authenticated users to execute arbitrary SQL commands and obtain usernames and passwords via the frm_search_in parameter.

Date published : 2006-03-28

http://www.securityfocus.com/bid/17229

https://www.exploit-db.com/exploits/1609