3 matches found
CVE-2006-5891
SQL injection vulnerability in detail.asp in Superfreaker Studios UStore 1.0 allows remote attackers to execute arbitrary SQL commands via the ID parameter...
CVE-2006-5891
SQL injection vulnerability in detail.asp in Superfreaker Studios UStore 1.0 allows remote attackers to execute arbitrary SQL commands via the ID parameter...
CVE-2006-5891
CVE-2006-5891 affects Superfreaker Studios UStore 1.0. A SQL injection in detail.asp (via the ID parameter) allows remote execution of arbitrary SQL commands. The CVSS2 base score is 7.5 (HIGH) with network attack vector, low complexity, no authentication, and partial impact on C/I/A. Exploitatio...