7.5
CVSSv2

CVE-2006-5987

Published: 20/11/2006 Updated: 17/10/2018
CVSS v2 Base Score: 7.5 | Impact Score: 6.4 | Exploitability Score: 10
VMScore: 755
Vector: AV:N/AC:L/Au:N/C:P/I:P/A:P

Vulnerability Summary

SQL injection vulnerability in default.asp in ASPintranet, possibly 1.2, allows remote malicious users to execute arbitrary SQL commands via the a parameter.

Affected Products

Vendor Product Versions
AspintranetAspintranet1.2

Exploits

source: wwwsecurityfocuscom/bid/21061/info ASPIntranet is prone to an SQL-injection vulnerability because it fails to sufficiently sanitize user-supplied data before using it in an SQL query Exploiting this issue could allow an attacker to compromise the application, access or modify data, or exploit latent vulnerabilities in the underl ...