CVE-2006-2857

SQL injection vulnerability in index.php in LifeType 1.0.4 allows remote attackers to execute arbitrary SQL commands via the articleId parameter in a ViewArticle action (viewarticleaction.class.php).

Date published : 2006-06-06

http://www.securityfocus.com/bid/18264

http://www.securityfocus.com/archive/1/435874/100/0/threaded