CVE-2006-0906

EPSS 1.2%

SQL injection vulnerability in D3Jeeb Pro 3 allows remote attackers to execute arbitrary SQL commands via the catid parameter in (1) fastlinks.php and (2) catogary.php.

Affected products

n/a · n/a

public PoCs found — 2

exploitdbwww.exploit-db.com/exploits/27328unverified exploitdbwww.exploit-db.com/exploits/27327unverified

⚠ Public resources, to assess the exposure of systems you control or are authorized to test. Test only with authorization.

Want to know if your infrastructure is exposed to this?

Talk to TrueHacking →

References

http://secunia.com/advisories/19062 http://securitytracker.com/id?1015687 https://exchange.xforce.ibmcloud.com/vulnerabilities/24941 http://www.securityfocus.com/archive/1/426197/100/0/threaded http://www.securityfocus.com/bid/16853 http://www.vupen.com/english/advisories/2006/0757