Multiple SQL injection vulnerabilities in war.php in Virtual War (VWar) 1.5.0 R14 and earlier allow remote attackers to execute arbitrary SQL commands via the (1) s, (2) showgame, (3) sortorder, and (4) sortby parameters.
Metrics
Affected Vendors & Products
References
History
No history.
MITRE
Status: PUBLISHED
Assigner: mitre
Published: 2006-06-22T22:00:00
Updated: 2024-08-07T18:16:05.778Z
Reserved: 2006-06-22T00:00:00
Link: CVE-2006-3139
Vulnrichment
No data.
NVD
Status : Modified
Published: 2006-06-22T22:06:00.000
Modified: 2024-11-21T00:12:54.043
Link: CVE-2006-3139
Redhat
No data.