Codeavalanche Freeforum CVE-2006-2822 SQL-Injection Vulnerability

Codeavalanche Freeforum CVE-2006-2822 SQL-Injection Vulnerability

Codeavalanche Freeforum is prone to a sql-injection vulnerability. SQL injection vulnerability in admin/default.asp in Dusan Drobac CodeAvalanche FreeForum (aka CAForum) 1.0 allows remote attackers to execute arbitrary SQL commands via the password parameter.