2 matches found
CVE-2006-6092
Multiple SQL injection vulnerabilities in vehiclelistings.asp in 20/20 Auto Gallery allow remote attackers to execute arbitrary SQL commands via the 1 vehicleID, 2 categoryIDlist, 3 saletype, 4 stocknumber, 5 manufacturer, 6 model, 7 vehicleID, 8 year, 9 vin, and 10 listingprice parameters...
CVE-2006-6092
Multiple SQL injection vulnerabilities in vehiclelistings.asp in 20/20 Auto Gallery allow remote attackers to execute arbitrary SQL commands via the 1 vehicleID, 2 categoryIDlist, 3 saletype, 4 stocknumber, 5 manufacturer, 6 model, 7 vehicleID, 8 year, 9 vin, and 10 listingprice parameters...