CVE-2006-1553

Name of the Vulnerable Software and Affected Versions: VSNS Lemon version 3.2.0

Description: A SQL injection issue exists in the functions/final functions.php file, allowing remote attackers to execute arbitrary SQL commands when magic quotes gpc is disabled. This is achieved by manipulating the id parameter.

Recommendations: For VSNS Lemon version 3.2.0, consider disabling the id parameter in the affected function until a patch is available, or enable magic quotes gpc to prevent SQL injection attacks.