CVE-2006-2179

Multiple SQL injection vulnerabilities in CyberBuild allow remote attackers to execute arbitrary SQL commands via the (1) SessionID parameter to login.asp or (2) ProductIndex parameter to browse0.htm.

Date published : 2006-05-04

http://www.securityfocus.com/bid/17829

http://pridels0.blogspot.com/2006/05/cyberbuild-vuln.html