2 matches found
CVE-2006-2848
CVE-2006-2848 affects links.asp in aspWebLinks 2.0, where remote attackers could change the administrative password by sending a direct request with a modified txtAdministrativePassword field. The NVD entry cites a CVSS v2 base score of 5.0 (Medium): attack vector Network, complexity Low, authent...
CVE-2006-2847
CVE-2006-2847 affects aspWebLinks 2.0, via the links.asp component. The vulnerability is a SQL injection in the linkID parameter, allowing remote attackers to execute arbitrary SQL commands. Documented impact includes potential data exposure and modification, with CVSSv2 base score 7.5 (HIGH) and...