CVE-2006-1374

SQL injection vulnerability in viewStatement.php in AdMan 1.0.20051221 and earlier allows remote attackers to execute arbitrary SQL commands via the transactions_offset parameter.

Date published : 2006-03-23

http://www.securityfocus.com/bid/17208

http://pridels0.blogspot.com/2006/03/adman-v10x-sql-vuln.html