CVE-2006-0581

2006-02-08T01:02:00
ID CVE-2006-0581
Type cve
Reporter cve@mitre.org
Modified 2017-07-20T01:29:00

Description

SQL injection vulnerability in Hosting Controller 6.1 Hotfix 2.8 allows remote authenticated users to execute arbitrary SQL commands via the (1) GatewayID parameter in an add action in AddGatewaySettings.asp and (2) IP parameter in IPManager.asp.