SQL injection vulnerability in news.php in Virtual War (VWar) 1.5.0 and earlier allows remote attackers to execute arbitrary SQL commands via the (1) sortby and (2) sortorder parameters.
Metrics
Affected Vendors & Products
References
History
No history.
MITRE
Status: PUBLISHED
Assigner: mitre
Published: 2006-08-14T23:00:00
Updated: 2024-08-07T18:57:46.262Z
Reserved: 2006-08-14T00:00:00
Link: CVE-2006-4141
Vulnrichment
No data.
NVD
Status : Modified
Published: 2006-08-14T23:04:00.000
Modified: 2024-11-21T00:15:15.617
Link: CVE-2006-4141
Redhat
No data.