Unrated severityNVD Advisory· Published Feb 16, 2006· Updated Apr 16, 2026
CVE-2006-0727
CVE-2006-0727
Description
SQL injection vulnerability in mstrack.php in MusOX DF MSAnalysis (DFMSA), as used in some environments that use CPG-Nuke Dragonfly CMS, allows remote attackers to trigger path disclosure from a SQL syntax error, and possibly execute arbitrary SQL commands, via certain query data, probably involving the profile name.
Affected products
1- cpe:2.3:a:musox:df_msanalysis:1.0.1:*:*:*:*:*:*:*
Patches
0No patches discovered yet.
Vulnerability mechanics
AI mechanics synthesis has not run for this CVE yet.
References
8- dragonflycms.org/Forums/viewtopic/t=14751.htmlnvd
- dragonflycms.org/Forums/viewtopic/t=14877/postdays=0/postorder=asc/start=15.htmlnvd
- dragonflycms.org/cvs/html/includes/functions/linking.phpnvd
- dragonflycms.org/cvs/html/includes/functions/linking.phpnvd
- www.osvdb.org/23060nvd
- www.osvdb.org/23250nvd
- www.securityfocus.com/bid/16783nvd
- www.vupen.com/english/advisories/2006/0688nvd
News mentions
0No linked articles in our index yet.