CVE-2006-5890

Name of the Vulnerable Software and Affected Versions Superfreaker Studios USupport version 1.0

Description A SQL injection issue exists in the detail.asp file, allowing remote attackers to execute arbitrary SQL commands by manipulating the id parameter in the API endpoint "/detail.asp".

Recommendations For Superfreaker Studios USupport version 1.0, avoid using the id parameter in the detail.asp file until a fix is available. As a temporary workaround, consider restricting access to the detail.asp file to minimize the risk of exploitation.