Unrated severityNVD Advisory· Published Feb 7, 2006· Updated Apr 16, 2026

CVE-2006-0570

Description

Multiple SQL injection vulnerabilities in phpstatus 1.0, when gpc_magic_quotes is disabled, allow remote attackers to execute arbitrary SQL commands and bypass authentication via (1) the username parameter in check.php and (2) unknown attack vectors in the administrative interface.

Affected products

Hinton Design/Phpstatus
cpe:2.3:a:hinton_design:phpstatus:1.0:*:*:*:*:*:*:*

Patches

No patches discovered yet.

Vulnerability mechanics

AI mechanics synthesis has not run for this CVE yet.

References

evuln.com/vulns/61/summary.htmlnvdVendor Advisory
secunia.com/advisories/18791nvd
securityreason.com/securityalert/427nvd
www.securityfocus.com/archive/1/424842/100/0/threadednvd
www.securityfocus.com/bid/16587nvd
www.vupen.com/english/advisories/2006/0450nvd

News mentions

No linked articles in our index yet.

cvss	0.000
epss	0.000
exploit	0.000
kev	0.000
patch	0.000
ransomware	0.000