CVE Search Engine - Security Vulnerabilities and Exploits Search Tool

show all

8 matches found

EUVD•added 2025/10/07 12:30 a.m.•2 views

EUVD-2006-5938

Malware in sbrugna...

7.5CVSS6.4AI score0.00963EPSS

Exploits1References7

EUVD•added 2025/10/07 12:30 a.m.•1 views

EUVD-2006-6050

Malware in sbrugna...

7.5CVSS6.4AI score0.01393EPSS

Exploits1References5

Cvelist•added 2006/11/22 2:0 a.m.•15 views

CVE-2006-6067

Multiple SQL injection vulnerabilities in 20/20 DataShed aka Real Estate Listing System allow remote attackers to execute arbitrary SQL commands via the 1 itemID parameter to a f-email.asp, or the 2 peopleID and 2 sortorder parameters to b listings.asp, different vectors than CVE-2006-5955...

8.4AI score0.01393EPSS

Exploits1References4

CVE•added 2006/11/22 2:0 a.m.•54 views

CVE-2006-6067

CVE-2006-6067 describes SQL injection vulnerabilities in 20/20 DataShed (Real Estate Listing System). The affected components are listings.asp (itemID parameter) and f-email.asp (itemID) or listings.asp (peopleID and sort_order). Root cause is SQL command execution via these parameters, with vect...

7.5CVSS8.4AI score0.01393EPSS

Exploits1References4Affected Software1

securityvulns•added 2006/11/18 12:0 a.m.•51 views

20/20 datashed [ multiples injection sql ]

vendor site:http://www.2020applications.com/ product:20/20 datashed bug:injection sql risk:high injection sql get : /f-email.asp?strPeopleID=1&itemID='sql /listings.asp?peopleID='sql /listings.asp?sortorder='sql laurent gaffie & benjamin mosse http://s-a-p.ca/ contact: [email protected]...

0.5AI score

Exploits0

Cvelist•added 2006/11/17 12:0 a.m.•19 views

CVE-2006-5955

SQL injection vulnerability in listings.asp in 20/20 DataShed aka Real Estate Listing System allows remote attackers to execute arbitrary SQL commands via the itemID parameter. NOTE: some of these details are obtained from third party information...

8.3AI score0.00963EPSS

Exploits1References6

CVE•added 2006/11/17 12:0 a.m.•60 views

CVE-2006-5955

Affected software: 20/20 DataShed (Real Estate Listing System). Vulnerable component: listings.asp (CVE-2006-5955) with vulnerability exposed via the itemID parameter, enabling SQL commands to be executed remotely. Related entry CVE-2006-6067 documents additional vectors (itemID to f-email.asp an...

7.5CVSS8.7AI score0.00963EPSS

Exploits1References6Affected Software1

Exploit DB•added 2006/11/17 12:0 a.m.•30 views

20/20 Applications Data Shed 1.0 - 'listings.asp' Multiple SQL Injections

source: https://www.securityfocus.com/bid/21156/info 20/20 DataShed is prone to multiple SQL-injection vulnerabilities because it fails to sufficiently sanitize user-supplied data before using it in an SQL query. Exploiting these issues could allow an attacker to compromise the application, acces...

7AI score

Exploits0

Rows per page

Query Builder

Family

Bulletin Type

Min CVSS Score

Date

Order by