Published: 07/12/2007 Updated: 08/08/2017

CVSS v2 Base Score: 7.5 | Impact Score: 6.4 | Exploitability Score: 10

VMScore: 755

Vector: AV:N/AC:L/Au:N/C:P/I:P/A:P

Multiple SQL injection vulnerabilities in xlaabsolutenm.aspx in Absolute News Manager.NET 5.1 allow remote malicious users to execute arbitrary SQL commands via the (1) z, (2) pz, (3) ord, and (4) sort parameters.

Vulnerable Product	Search on Vulmon	Subscribe to Product
xigla absolute news manager.net 5.1

source: wwwsecurityfocuscom/bid/26692/info Absolute News Manager NET is prone to multiple remote vulnerabilities, including multiple cross-site scripting, SQL-injection, and information-disclosure issues Attackers can exploit these issues to steal cookie-based authentication credentials, execute arbitrary script code in the context o ...

CWE-89 http://marc.info/?l=bugtraq&m=119678724111351&w=2 http://www.procheckup.com/Vulnerability_PR07-39.php http://www.xigla.com/news/default.aspx http://www.xigla.com/security/ANMNET51-SecurityUpdate20071128.zip http://www.securityfocus.com/bid/26692 http://secunia.com/advisories/27923 http://osvdb.org/40576 https://exchange.xforce.ibmcloud.com/vulnerabilities/38871 https://nvd.nist.gov https://www.exploit-db.com/exploits/30842/

Get Started

Vulmon Search is a vulnerability search engine. It gives comprehensive vulnerability information through a very simple user interface.

Home Recent Vulnerabilities Research Posts Trends Blog About Contact

Vulmon Search Vulmon Research Vulmon Alerts Vulmap

Twitter Reddit Linkedin Facebook

CVE-2007-6269

Vulnerability Summary

Exploits

References

Vulmon Search

About

Products

Connect