CVE-2006-6846

Multiple SQL injection vulnerabilities in While You Were Out WYWO InOut Board 1.0 allow remote attackers to execute arbitrary SQL commands via 1 the num parameter in a phonemessage.asp, 2 the catcode parameter in b faqDsp.asp, and the 3 Username and 4 Password fields in c login.asp...

CVE-2006-6831

SQL injection vulnerability in faqDsp.asp in aFAQ 1.0 allows remote attackers to execute arbitrary SQL commands via the catcode parameter...

CVE-2006-6831

CVE-2006-6831 describes an SQL injection in the FAQ software: “faqDsp.asp” in aFAQ 1.0 . The vulnerability is triggered by the catcode parameter, enabling a remote attacker to execute arbitrary SQL commands. According to the provided metrics, the CVSS v2 base score is 7.5 (HIGH) with network acce...

CVE-2006-6831

SQL injection vulnerability in faqDsp.asp in aFAQ 1.0 allows remote attackers to execute arbitrary SQL commands via the catcode parameter...

CVE-2006-6846

Multiple SQL injection vulnerabilities in While You Were Out WYWO InOut Board 1.0 allow remote attackers to execute arbitrary SQL commands via 1 the num parameter in a phonemessage.asp, 2 the catcode parameter in b faqDsp.asp, and the 3 Username and 4 Password fields in c login.asp...

CVE-2005-4064

CVE-2005-4064 describes multiple SQL injection vulnerabilities in A-FAQ 1.0, allowing remote attackers to execute arbitrary SQL commands through the faqDspItem.asp (faqid parameter) and faqDsp.asp (catcode parameter). Affected product: A-FAQ 1.0. Underlying cause and exact impact are documented a...