CVE-2006-1683

EPSS 1.2%

SQL injection vulnerability in admin/login.php in Chipmunk Guestbook allows remote attackers to execute arbitrary SQL commands and bypass login authentication via the User name.

Affected products

n/a · n/a

public PoCs found — 1

exploitdbwww.exploit-db.com/exploits/27629unverified

⚠ Public resources, to assess the exposure of systems you control or are authorized to test. Test only with authorization.

Want to know if your infrastructure is exposed to this?

Talk to TrueHacking →

References

http://secunia.com/advisories/19584 https://exchange.xforce.ibmcloud.com/vulnerabilities/25695 http://www.securityfocus.com/archive/1/430315/100/0/threaded http://www.securityfocus.com/bid/17483 http://www.vupen.com/english/advisories/2006/1323