Unrated severityNVD Advisory· Published Jan 13, 2006· Updated Apr 16, 2026
CVE-2006-0205
CVE-2006-0205
Description
Multiple SQL injection vulnerabilities in Wordcircle 2.17 allow remote attackers to (1) execute arbitrary SQL commands and bypass authentication via the password field in the login action to index.php (involving v_login.php and s_user.php) and (2) have other unknown impact via certain other fields in unspecified scripts.
Affected products
1- cpe:2.3:a:wordcircle:wordcircle:2.17:*:*:*:*:*:*:*
Patches
0No patches discovered yet.
Vulnerability mechanics
AI mechanics synthesis has not run for this CVE yet.
References
12- evuln.com/vulns/27/summary.htmlnvdExploit
- evuln.com/vulns/28/summary.htmlnvdExploit
- www.osvdb.org/22358nvdExploit
- secunia.com/advisories/18440nvdVendor Advisory
- www.vupen.com/english/advisories/2006/0185nvdVendor Advisory
- securityreason.com/securityalert/345nvd
- securityreason.com/securityalert/346nvd
- www.securityfocus.com/archive/1/421745/100/0/threadednvd
- www.securityfocus.com/archive/1/421746/100/0/threadednvd
- www.securityfocus.com/bid/16227nvd
- exchange.xforce.ibmcloud.com/vulnerabilities/24105nvd
- exchange.xforce.ibmcloud.com/vulnerabilities/24108nvd
News mentions
0No linked articles in our index yet.