Published: 01/12/2006 Updated: 17/10/2018

CVSS v2 Base Score: 7.5 | Impact Score: 6.4 | Exploitability Score: 10

VMScore: 760

Vector: AV:N/AC:L/Au:N/C:P/I:P/A:P

Multiple SQL injection vulnerabilities in Fixit iDMS Pro Image Gallery allow remote malicious users to execute arbitrary SQL commands via the (1) show_id or (2) parentid parameter to (a) filelist.asp, or the (3) fid parameter to (b) showfile.asp.

Vulnerable Product	Search on Vulmon	Subscribe to Product
fixit knowledge solutions idms pro image gallery

source: wwwsecurityfocuscom/bid/21282/info Fixit iDMS Pro is prone to multiple input-validation vulnerabilities, including SQL-injection issues and an HTML-injection issue, because the application fails to properly sanitize user-supplied input Successful exploits of these vulnerabilities could allow an attacker to compromise the appl ...

source: wwwsecurityfocuscom/bid/21282/info Fixit iDMS Pro is prone to multiple input-validation vulnerabilities, including SQL-injection issues and an HTML-injection issue, because the application fails to properly sanitize user-supplied input Successful exploits of these vulnerabilities could allow an attacker to compromise the applic ...

NVD-CWE-Other http://www.aria-security.com/forum/showthread.php?t=39 http://www.securityfocus.com/bid/21282 http://securitytracker.com/id?1017281 https://exchange.xforce.ibmcloud.com/vulnerabilities/30513 http://www.securityfocus.com/archive/1/452567/100/0/threaded https://nvd.nist.gov https://www.exploit-db.com/exploits/29179/

CVE-2006-6195

Vulnerability Summary

Exploits

References

Vulmon Search

About

Products

Connect