NuytsTech Security

CVE-2006-4857

by ·

SQL injection vulnerability in default.asp (aka the login page) in ClickTech ClickBlog 2.0 allows remote attackers to execute arbitrary SQL commands via the (1) username and (2) form_codeword (aka the Password field) parameters.

Date published : 2006-09-19

http://www.securityfocus.com/bid/20033

http://www.securityfocus.com/archive/1/446074/100/0/threaded

Tags: