CVE-2006-4957

N/A Unknown

Published: September 23, 2006 Modified: April 16, 2026

Description

SQL injection vulnerability in the GetMember function in functions.php in MyReview 1.9.4 allows remote attackers to execute arbitrary SQL commands via the email parameter to Admin.php.

AI Explanation

Get an AI-powered plain-language explanation of this vulnerability and remediation steps.

References to Advisories, Solutions, and Tools

Patch Vendor Advisory Exploit Third Party Advisory

http://secunia.com/advisories/21991

Source: cve@mitre.org

Vendor Advisory

http://www.securityfocus.com/bid/20105

Source: cve@mitre.org

Exploit

http://www.vupen.com/english/advisories/2006/3716

Source: cve@mitre.org

https://exchange.xforce.ibmcloud.com/vulnerabilities/29029

Source: cve@mitre.org

https://www.exploit-db.com/exploits/2397

Source: cve@mitre.org

http://secunia.com/advisories/21991