Unrated severityNVD Advisory· Published Sep 25, 2006· Updated Jun 16, 2026
CVE-2006-4978
CVE-2006-4978
Description
Multiple SQL injection vulnerabilities in Walter Beschmout PhpQuiz 1.2 and earlier allow remote attackers to execute arbitrary SQL commands via (1) the univers parameter in score.php and (2) the quiz_id parameter in home.php, accessed through the front/ URI.
AI Insight
LLM-synthesized narrative grounded in this CVE's description and references.
Affected products
2cpe:2.3:a:walter_beschmout:phpquiz:*:*:*:*:*:*:*:*+ 1 more
- cpe:2.3:a:walter_beschmout:phpquiz:*:*:*:*:*:*:*:*range: <=1.2
- (no CPE)range: <=1.2
Patches
Vulnerability mechanics
References
8- www.morx.org/phpquiz.txtnvdExploit
- secunia.com/advisories/22015nvdVendor Advisory
- securityreason.com/securityalert/1627nvd
- www.securityfocus.com/archive/1/446315/100/0/threadednvd
- www.securityfocus.com/bid/20065nvd
- www.vupen.com/english/advisories/2006/3693nvd
- exchange.xforce.ibmcloud.com/vulnerabilities/28993nvd
- www.exploit-db.com/exploits/2376nvd
News mentions
0No linked articles in our index yet.