CVE

Id
20975  
CVE No.
CVE-2006-4871  
Status
Candidate  
Description
SQL injection vulnerability in search_run.asp in Keyvan1 (aka Keyvan Janghorbani) EShoppingPro 1.0 allows remote attackers to execute arbitrary SQL commands via the order parameter.  
Phase
Assigned (20060919)  
Votes
None (candidate not yet proposed)  
Comments
 

Actions

Related CVE References

Id CVE Id CVE No. Reference Actions
198805 20975 CVE-2006-4871 BUGTRAQ:20060917 EShoppingPro v1.0(search_run.asp) Remote SQL Injection Vulnerability  View
198806 20975 CVE-2006-4871 URL:http://www.securityfocus.com/archive/1/archive/1/446222/100/0/threaded  View
198807 20975 CVE-2006-4871 BID:20089  View
198808 20975 CVE-2006-4871 URL:http://www.securityfocus.com/bid/20089  View
198809 20975 CVE-2006-4871 VUPEN:ADV-2006-3680  View
198810 20975 CVE-2006-4871 URL:http://www.vupen.com/english/advisories/2006/3680  View
198811 20975 CVE-2006-4871 SECTRACK:1016878  View
198812 20975 CVE-2006-4871 URL:http://securitytracker.com/id?1016878  View
198813 20975 CVE-2006-4871 SECUNIA:22006  View
198814 20975 CVE-2006-4871 URL:http://secunia.com/advisories/22006  View
198815 20975 CVE-2006-4871 SREASON:1610  View
198816 20975 CVE-2006-4871 URL:http://securityreason.com/securityalert/1610  View
198817 20975 CVE-2006-4871 XF:eshoppingpro-search-sql-injection(29003)  View

Related JVN

Id JVN No. Title Summary CVE No. CVE Id CVSS_v2 CVSS_v3 JVN URL Actions
59858 JVNDB-2006-002124 Jupiter CMS における重要な情報を取得される脆弱性 Jupiter CMS には、エラーメッセージ内にインストールパス内に表示する不備があるため、重要な情報を取得される脆弱性が存在します。 CVE-2006-4873 20975 5 http://jvndb.jvn.jp/ja/contents/2006/JVNDB-2006-002124.html  View