CVE-2006-4035 | HackTesting

SQL injection vulnerability in counterchaos.php in CounterChaos 0.48c and earlier allows remote attackers to execute arbitrary SQL commands via the Referer HTTP header.

References

https://exchange.xforce.ibmcloud.com/vulnerabilities/28222

http://securityreason.com/securityalert/1350

http://www.frsirt.com/english/reference/17541

http://archives.neohapsis.com/archives/bugtraq/2006-08/0080.html

http://www.vupen.com/english/advisories/2006/3153

http://www.securityfocus.com/bid/19344

http://secunia.com/advisories/21356