mirror of
https://github.com/0xMarcio/cve.git
synced 2026-05-24 07:34:01 +02:00
0xMarcio
806 B
806 B
CVE-2006-2753
Description
SQL injection vulnerability in MySQL 4.1.x before 4.1.20 and 5.0.x before 5.0.22 allows context-dependent attackers to execute arbitrary SQL commands via crafted multibyte encodings in character sets such as SJIS, BIG5, and GBK, which are not properly handled when the mysql_real_escape function is used to escape the input.