CVE-2006-4961
Php Blue Dragon <2.9.1 - SQL Injection
Title source: llmDescription
SQL injection vulnerability in the GetModuleConfig function in public_includes/pub_kernel/pbd_modules.php in Php Blue Dragon 2.9.1 and earlier allows remote attackers to execute arbitrary SQL commands via the m parameter to index.php.
Exploits (1)
References (5)
Scores
EPSS
0.0133
EPSS Percentile
80.0%
Details
Status
published
Products (2)
blue_dragon/php_blue_dragon
platinum_2.8.0
blue_dragon/php_blue_dragon
platinum_2.9.1
Published
Sep 23, 2006
Tracked Since
Feb 18, 2026