CVE-2006-0913
Publication date 28 February 2006
Last updated 24 July 2024
Ubuntu priority
SQL injection vulnerability in whineatnews.pl in Bugzilla 2.17 through 2.18.4 and 2.20 allows remote authenticated users with administrative privileges to execute arbitrary SQL commands via the whinedays parameter, as accessible from editparams.cgi.