CVE-2006-6132

2006-11-2801:00:00

mitre

www.cve.org

AI Score

8.5

Confidence

Low

EPSS

0.007

Percentile

80.8%

JSON

Multiple SQL injection vulnerabilities in Link Exchange Lite allow remote attackers to execute arbitrary SQL commands via (1) the search engine field to search.asp and (2) psearch parameter to linkslist.asp.

References

s-a-p.ca/index.php?page=OurAdvisories&id=53

secunia.com/advisories/23068

securityreason.com/securityalert/1920

www.securityfocus.com/archive/1/452256/100/0/threaded

www.securityfocus.com/bid/21239

www.vupen.com/english/advisories/2006/4656

exchange.xforce.ibmcloud.com/vulnerabilities/30460