CVE-2006-4705

SQL injection vulnerability in login.php in dwayner79 and Dominic Gamble Timesheet (aka Timesheet.php) 1.2.1 allows remote attackers to execute arbitrary SQL commands via the username parameter.

Date published : 2006-09-12

http://www.securityfocus.com/bid/19856

http://www.securityfocus.com/archive/1/445603/100/0/threaded