CVE-2006-6671

EPSS 1.0%

SQL injection vulnerability in down.asp in Burak Yylmaz Download Portal allows remote attackers to execute arbitrary SQL commands via the id parameter.

Affected products

n/a · n/a

public PoCs found — 1

exploitdbwww.exploit-db.com/exploits/2962unverified

⚠ Public resources, to assess the exposure of systems you control or are authorized to test. Test only with authorization.

Want to know if your infrastructure is exposed to this?

Talk to TrueHacking →

References

http://secunia.com/advisories/23447 http://securityreason.com/securityalert/2055 http://www.securityfocus.com/archive/1/454857/100/0/threaded http://www.securityfocus.com/bid/21676 http://www.vupen.com/english/advisories/2006/5085