Intrusion Prevention

Vwdev.Index.PHP.SQL.Injection

Description

A SQL injection vulnerability in index.php in vwdev allows remote attackers to execute arbitrary SQL commands via the UID parameter in the definition Page.

Affected Products

vwdev vwdev 0

Impact

Execute arbitrary SQL commands.

Recommended Actions

Currently we are not aware of any vendor-supplied patches for this issue.
http://www.vwdev.com/

CVE References

CVE-2006-0651