CVE-2006-2826

N/A Unknown

Published: June 05, 2006 Modified: April 16, 2026

Description

SQL injection vulnerability in sessions.inc in PHP Base Library (PHPLib) before 7.4a allows remote attackers to execute arbitrary SQL commands via the id variable, which is set by a client through a query string or a cookie.

AI Explanation

Get an AI-powered plain-language explanation of this vulnerability and remediation steps.

References to Advisories, Solutions, and Tools

Patch Vendor Advisory Exploit Third Party Advisory

http://secunia.com/advisories/16902

Source: cve@mitre.org

Patch Vendor Advisory

http://securitytracker.com/id?1016123

Source: cve@mitre.org

Patch

http://sourceforge.net/project/shownotes.php?group_id=31885&release_id=396091

Source: cve@mitre.org

Patch

http://www.gulftech.org/?node=research&article_id=00107-03052006

Source: cve@mitre.org

Vendor Advisory

http://www.osvdb.org/23466

Source: cve@mitre.org

Patch

http://www.securityfocus.com/bid/16801

Source: cve@mitre.org

Patch

http://www.vupen.com/english/advisories/2006/0720

Source: cve@mitre.org

https://exchange.xforce.ibmcloud.com/vulnerabilities/24873

Source: cve@mitre.org

http://secunia.com/advisories/16902