CVE-2006-6911

CVE-2006-6911

EPSS 0.9%

SQL injection vulnerability in search.asp in Digitizing Quote And Ordering System 1.0 allows remote authenticated users to execute arbitrary SQL commands via the ordernum parameter.

Productos afectados

¿Quieres saber si tu infraestructura está expuesta a esto?

Hablar con TrueHacking →

Referencias

http://osvdb.org/31689 http://secunia.com/advisories/23652 https://exchange.xforce.ibmcloud.com/vulnerabilities/31318 https://www.exploit-db.com/exploits/3089