VYPR
Unrated severityNVD Advisory· Published May 5, 2006· Updated Jun 16, 2026

CVE-2006-2214

CVE-2006-2214

Description

Multiple SQL injection vulnerabilities in 4images 1.7.1 and earlier allow remote attackers to execute arbitrary SQL commands via the sessionid parameter in (1) top.php and (2) member.php. NOTE: this issue has also been reported to affect 1.7.2.

AI Insight

LLM-synthesized narrative grounded in this CVE's description and references.

Affected products

3
  • cpe:2.3:a:4images:image_gallery_management_system:*:*:*:*:*:*:*:*+ 1 more
    • cpe:2.3:a:4images:image_gallery_management_system:*:*:*:*:*:*:*:*range: <=1.7.2
    • cpe:2.3:a:4images:image_gallery_management_system:1.7.1:*:*:*:*:*:*:*
  • 4images/4imagesllm-create
    Range: <=1.7.2

Patches

Vulnerability mechanics

References

7

News mentions

0

No linked articles in our index yet.