Unrated severityNVD Advisory· Published May 10, 2006· Updated Apr 16, 2026

CVE-2006-2279

Description

Multiple SQL injection vulnerabilities in SaphpLesson 3.0 allow remote attackers to execute arbitrary SQL commands via (1) the Find parameter in (a) search.php, and the (2) LID and (3) Rate parameters in (b) misc.php.

Affected products

Saphplesson/Saphplesson
cpe:2.3:a:arabless:saphplesson:3.0:*:*:*:*:*:*:*

Patches

No patches discovered yet.

Vulnerability mechanics

AI mechanics synthesis has not run for this CVE yet.

References

secunia.com/advisories/20034nvdVendor Advisory
securityreason.com/securityalert/862nvd
www.osvdb.org/25362nvd
www.osvdb.org/25363nvd
www.securityfocus.com/archive/1/433052/100/0/threadednvd
www.securityfocus.com/bid/17848nvd
www.vupen.com/english/advisories/2006/1708nvd
exchange.xforce.ibmcloud.com/vulnerabilities/26293nvd

News mentions

No linked articles in our index yet.

cvss	0.000
epss	0.001
exploit	0.000
kev	0.000
patch	0.000
ransomware	0.000