CVE-2006-6038 - Informatory Greater Swiss Mountain Dog

Description

SQL injection vulnerability in editpoll.php in Powie’s PHP Forum (pForum) 1.29a and earlier allows remote attackers to execute arbitrary SQL commands via the id parameter.

Reference

http://www.securityfocus.com/bid/21144 http://secunia.com/advisories/22964 http://www.vupen.com/english/advisories/2006/4607 https://exchange.xforce.ibmcloud.com/vulnerabilities/30359 https://www.exploit-db.com/exploits/2797