Unrated severityNVD Advisory· Published Jun 1, 2006· Updated Jun 16, 2026
CVE-2006-2749
CVE-2006-2749
Description
SQL injection vulnerability in search.php in Open Searchable Image Catalogue (OSIC) 0.7.0.1 and earlier allows remote attackers to inject arbitrary SQL commands via the (1) txtCustomField and (2) CustomFieldID array parameters.
AI Insight
LLM-synthesized narrative grounded in this CVE's description and references.
Affected products
2- cpe:2.3:a:open_searchable_image_catalogue:open_searchable_image_catalogue:*:*:*:*:*:*:*:*Range: <=0.7.0.0
Patches
Vulnerability mechanics
References
8- secunia.com/advisories/20341nvdVendor Advisory
- www.seclab.tuwien.ac.at/advisories/TUVSA-0605-001.txtnvdVendor Advisory
- securityreason.com/securityalert/1014nvd
- securitytracker.com/idnvd
- sourceforge.net/forum/forum.phpnvd
- svn.sourceforge.net/viewcvs.cgi/osic-win/branches/osic_0-7/osic/search.phpnvd
- www.securityfocus.com/archive/1/435380/100/0/threadednvd
- www.securityfocus.com/bid/18169nvd
News mentions
0No linked articles in our index yet.