cpe:/a:adn_forum:adn_forum:1.0 cpe:/a:adn_forum:adn_forum:1.0b CVE-2006-0123 2006-01-05T00:00:00.000-05:00 2006-01-09T06:03:00.000-05:00 2011-09-08T00:00:00.000-04:00 7.5 NETWORK LOW NONE PARTIAL PARTIAL PARTIAL http://nvd.nist.gov 2006-01-09T13:23:00.000-05:00 ALLOWS_OTHER_ACCESS SECTRACK 1015445 BID 16157 SECUNIA 18300 BUGTRAQ 20060105 [eVuln] ADNForum Multiple Vulnerabilities OSVDB 22240 OSVDB 22241 VUPEN ADV-2006-0077 MISC http://evuln.com/vulns/15/summary.html Multiple SQL injection vulnerabilities in ADN Forum 1.0b allow remote attackers to execute arbitrary SQL commands via the (1) fid parameter in index.php and (2) pagid parameter in verpag.php, and possibly other vectors.