CVE-2006-4284

SQL injection vulnerability in comments.asp in LBlog 1.05 and earlier allows remote attackers to execute arbitrary SQL commands via the id parameter.

Date published : 2006-08-22

http://www.securityfocus.com/bid/19607

http://www.securityfocus.com/archive/1/443872/100/0/threaded