Unrated severityNVD Advisory· Published May 5, 2006· Updated Apr 16, 2026

CVE-2006-2209

Description

Multiple SQL injection vulnerabilities in index.php in PHP Arena paCheckBook 1.1 allow remote attackers to execute arbitrary SQL commands via (1) the transtype parameter in an add action or (2) entry parameter in an edit action. NOTE: the provenance of this information is unknown; the details are obtained from third party information.

Affected products

Php Arena/Pacheckbook
cpe:2.3:a:php_arena:pacheckbook:1.1:*:*:*:*:*:*:*

Patches

No patches discovered yet.

Vulnerability mechanics

AI mechanics synthesis has not run for this CVE yet.

References

downloads.securityfocus.com/vulnerabilities/exploits/pacheckbook-1.1-mutlsql.txtnvdExploit
www.securityfocus.com/bid/17821nvdExploit
secunia.com/advisories/20008nvd
www.osvdb.org/25349nvd
www.vupen.com/english/advisories/2006/1691nvd
exchange.xforce.ibmcloud.com/vulnerabilities/26356nvd

News mentions

No linked articles in our index yet.

cvss	0.000
epss	0.000
exploit	0.030
kev	0.000
patch	0.000
ransomware	0.000