CVE-2006-1353
CVE-2006-1353
Multiple SQL injection vulnerabilities in ASPPortal 3.1.1 and earlier allow remote attackers to execute arbitrary SQL commands via (1) the downloadid parameter in download_click.asp and (2) content_ID parameter in news/News_Item.asp; authenticated administrators can also conduct attacks via (3) user_id parameter to users/add_edit_user.asp, (4) bannerid parameter to banner_adds/banner_add_edit.asp, (5) cat_id parameter to categories/add_edit_cat.asp, (6) Content_ID parameter to News/add_edit_news.asp, (7) download_id parameter to downloads/add_edit_download.asp, (8) Poll_ID parameter to poll/add_edit_poll.asp, (9) contactid parameter to contactus/contactus_add_edit.asp, (10) sortby parameter to poll/poll_list.asp, and (11) unspecified inputs to downloads/add_edit_download.asp.
Affected products
n/a · n/apublic PoCs found — 1
cve_referencewww.exploit-db.com/exploits/1597unverified⚠ Public resources, to assess the exposure of systems you control or are authorized to test. Test only with authorization.
Want to know if your infrastructure is exposed to this?
Talk to TrueHacking →References
http://archives.neohapsis.com/archives/fulldisclosure/2006-03/1402.htmlhttp://archives.neohapsis.com/archives/fulldisclosure/2006-03/1431.htmlhttp://secunia.com/advisories/19286http://securityreason.com/securityalert/608https://exchange.xforce.ibmcloud.com/vulnerabilities/25346https://www.exploit-db.com/exploits/1597http://www.nukedx.com/?viewdoc=21http://www.osvdb.org/24020http://www.osvdb.org/24084http://www.osvdb.org/24085http://www.osvdb.org/24086http://www.osvdb.org/24087