VYPR
Unrated severityNVD Advisory· Published Jun 27, 2006· Updated Jun 16, 2026

CVE-2006-3238

CVE-2006-3238

Description

Multiple SQL injection vulnerabilities in VBZooM 1.00 and earlier allow remote attackers to execute arbitrary SQL commands via the (1) MemberID parameter to rank.php, and the (2) QuranID parameter to lng.php.

Affected products

2
  • Vbzoom/Vbzoom2 versions
    cpe:2.3:a:vbzoom:vbzoom:*:*:*:*:*:*:*:*+ 1 more
    • cpe:2.3:a:vbzoom:vbzoom:*:*:*:*:*:*:*:*range: <=1.00
    • (no CPE)range: <=1.00

Patches

Vulnerability mechanics

References

7

News mentions

0

No linked articles in our index yet.