CVE-2006-6152

2006-11-28T23:28:00
ID CVE-2006-6152
Type cve
Reporter cve@mitre.org
Modified 2018-10-17T21:46:00

Description

Multiple SQL injection vulnerabilities in vSpin.net Classified System 2004 allow remote attackers to execute arbitrary SQL commands via the (1) cat parameter to (a) cat.asp, or the (2) keyword, (3) order, (4) sort, (5) menuSelect, or (6) state parameter to (b) search.asp.