CVEMON

CVE SEARCH UTILITY|

CVE-2006-3394

SQL injection vulnerability in the files mod in index.php in BXCP 0.3.0.4 allows remote attackers to execute arbitrary SQL commands via the where parameter in a view action.