Vulnonym.com

CVE-2006-6132 - Fair minded Kingfisher

Description

Multiple SQL injection vulnerabilities in Link Exchange Lite allow remote attackers to execute arbitrary SQL commands via (1) the search engine field to search.asp and (2) psearch parameter to linkslist.asp.

Reference

http://s-a-p.ca/index.php?page=OurAdvisories&id=53 http://www.securityfocus.com/bid/21239 http://secunia.com/advisories/23068 http://securityreason.com/securityalert/1920 http://www.vupen.com/english/advisories/2006/4656 https://exchange.xforce.ibmcloud.com/vulnerabilities/30460 http://www.securityfocus.com/archive/1/452256/100/0/threaded