SQL Injection Vulnerability in Loudblog by Loudblog
CVE-2006-1113

Currently unrated

Key Information:

Vendor: Gerrit Van Aaken
Status: Loudblog
Vendor: CVE Published:; 9 March 2006

🔔 Create Gerrit Van Aaken Vulnerability Alert

What is CVE-2006-1113?

An SQL injection vulnerability has been identified in the podcast.php file of Loudblog versions prior to 0.42. This flaw enables remote attackers to manipulate database queries through the 'id' parameter, potentially allowing them to execute arbitrary SQL commands. Such exploitation could lead to unauthorized access to sensitive data or modification of the database structure. It is crucial for users of affected versions to upgrade to mitigate the risks associated with this vulnerability.

References

http://loudblog.de/forum/viewtopic.php?id=590

x_refsource_CONFIRM

http://www.securityfocus.com/bid/17023

vdb-entryx_refsource_BID

http://www.securityfocus.com/archive/1/426973/100/0/threaded

mailing-listx_refsource_BUGTRAQ

Download the Critical Vulnerability Management Cheat Sheet

Timeline

Vulnerability published
Mar 9, 2006
Vulnerability Reserved
Mar 9, 2006

CVE-2006-1113 Data

JSON