CVE-2006-6577

Published: 15/12/2006 Updated: 17/10/2018

CVSS v2 Base Score: 6.8 | Impact Score: 6.4 | Exploitability Score: 8.6

VMScore: 690

Vector: AV:N/AC:M/Au:N/C:P/I:P/A:P

SQL injection vulnerability in polls.php in Neocrome Land Down Under (LDU) 8.x and previous versions allows remote malicious users to execute arbitrary SQL commands via the id parameter.

Vulnerable Product	Search on Vulmon	Subscribe to Product
neocrome land down under 8.0
neocrome seditio 1.10

LDU <= 8x Remote SQL Injection (avatarselect id) Vulnerability Discovered by: nukedx Contacts: ICQ: 10072 MSN/Mail: nukedx@nukedxcom web: wwwnukedxcom Original advisory can be found at: wwwnukedxcom/?viewdoc=51 ---- GET -> wwwvictimcom/usersphp?m=profile&a=avatarselect&x=XVALUE&id=defaultgif[SQL Inje ...

******************************************************************************* # Title : LDU <= 8x (pollsphp) Remote SQL Injection Vulnerability # Author : ajann # Contact : :( # Dork : "Powered by LDU" ******************************************************************************* [[SQL]]]--------------------------------------- ...

NVD-CWE-Other http://www.securityfocus.com/bid/21366 http://securityreason.com/securityalert/2037 https://exchange.xforce.ibmcloud.com/vulnerabilities/30616 http://www.securityfocus.com/archive/1/453134/100/200/threaded https://nvd.nist.gov https://www.exploit-db.com/exploits/2819/

Get Started

Vulmon Search is a vulnerability search engine. It gives comprehensive vulnerability information through a very simple user interface.

Home Recent Vulnerabilities Research Posts Trends Blog About Contact

Vulmon Search Vulmon Research Vulmon Alerts Vulmap

Twitter Reddit Linkedin Facebook

CVE-2006-6577

Vulnerability Summary

Exploits

References

Vulmon Search

About

Products

Connect