Vulmon Recent Vulnerabilities Research Posts Trends Blog About Contact
7.8
CVSSv2

CVE-2006-2794

Published: 03/06/2006 Updated: 18/10/2018
CVSS v2 Base Score: 7.8 | Impact Score: 6.9 | Exploitability Score: 10
VMScore: 785
Vector: AV:N/AC:L/Au:N/C:C/I:N/A:N
Subscribe to Aspsitem

Vulnerability Summary

Hesabim.asp in ASPSitem 2.0 and previous versions allows remote malicious users to read private messages of other users via a modified id parameter.

Vulnerable Product Search on Vulmon Subscribe to Product

aspsitem aspsitem 1.83

aspsitem aspsitem

Exploits

Exploit DB: ASPSitem 2.0 - SQL Injection / Database Disclosure
ASPSitem <= 20 Multiple Vulnerabilities Contacts > ICQ: 10072 MSN/Mail: nukedx@nukedxcom web: wwwnukedxcom This exploits works on ASPSitem <= 20 Original advisory can be found at: wwwnukedxcom/?viewdoc=39 SQL injection -> GET -> [victim]/[ASPSitemDir]/Anketasp?hid=[SQL] EXAMPLE -> [victim]/[ASPSitemD ...

References

NVD-CWE-Otherhttp://www.nukedx.com/?viewdoc=39http://secunia.com/advisories/20355http://securityreason.com/securityalert/1021https://exchange.xforce.ibmcloud.com/vulnerabilities/26859http://www.securityfocus.com/archive/1/435287/100/0/threadedhttps://nvd.nist.govhttps://www.exploit-db.com/exploits/1845/
CVSSv2
CVSSv2
CVSSv3
VMScore
Recommendations:
CVE-2023-38298CVE-2024-20356CVE-2023-21987CVE-2024-33217bypassCVE-2024-31804CVE-2024-32660unauthorizedSSRF
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started

Vulmon Search

Vulmon Search is a vulnerability search engine. It gives comprehensive vulnerability information through a very simple user interface.

About

Home Recent Vulnerabilities Research Posts Trends Blog About Contact

Products

Vulmon Search Vulmon Research Vulmon Alerts Vulmap

Connect

Twitter Reddit Linkedin Facebook