CVE-2006-6132 - Fair minded Kingfisher
Description
Multiple SQL injection vulnerabilities in Link Exchange Lite allow remote attackers to execute arbitrary SQL commands via (1) the search engine field to search.asp and (2) psearch parameter to linkslist.asp.
Reference
http://s-a-p.ca/index.php?page=OurAdvisories&id=53 http://www.securityfocus.com/bid/21239 http://secunia.com/advisories/23068 http://securityreason.com/securityalert/1920 http://www.vupen.com/english/advisories/2006/4656 https://exchange.xforce.ibmcloud.com/vulnerabilities/30460 http://www.securityfocus.com/archive/1/452256/100/0/threaded