CVE-2006-0184

2006-01-1211:00:00

mitre

www.cve.org

AI Score

8.7

Confidence

Low

EPSS

0.009

Percentile

82.9%

JSON

Multiple SQL injection vulnerabilities in AspTopSites allow remote attackers to execute arbitrary SQL commands via the (1) id parameter to goto.asp or (2) password parameter to includeloginuser.asp.

References

archives.neohapsis.com/archives/fulldisclosure/2006-01/0351.html

secunia.com/advisories/18408

www.exploitlabs.com/files/advisories/EXPL-A-2006-001-asptopsites.txt

www.osvdb.org/22330

www.vupen.com/english/advisories/2006/0146

exchange.xforce.ibmcloud.com/vulnerabilities/24072