CVE-2006-0775

Name of the Vulnerable Software and Affected Versions BirthSys version 3.1

Description The issue concerns SQL injection vulnerabilities in the show.php file. Remote attackers can execute arbitrary SQL commands via the $month variable.

Recommendations For BirthSys version 3.1, consider restricting access to the show.php file or the $month variable to minimize the risk of exploitation. As a temporary workaround, avoid using the $month variable in the show.php file until a patch is available.