CVE-2006-3213

Name of the Vulnerable Software and Affected Versions WeBBoA Hosting version 1.1

Description A SQL injection issue allows remote attackers to execute arbitrary SQL commands via the id parameter to an unspecified script, possibly "host/yeni host.asp".

Recommendations For WeBBoA Hosting version 1.1, avoid using the id parameter in the affected script until the issue is resolved. As a temporary workaround, consider restricting access to the unspecified script to minimize the risk of exploitation. At the moment, there is no information about a newer version that contains a fix for this vulnerability.