CVE-2005-4140

SQL injection vulnerability in admin/login/index.php in Website Baker 2.6.0 allows remote attackers to execute arbitrary SQL commands via the username parameter, as used by the user field.

Date published : 2005-12-09

http://www.securityfocus.com/bid/15776

http://archives.neohapsis.com/archives/bugtraq/2005-12/0085.html