Vulnerabilities > CVE-2003-0560 - SQL Injection vulnerability in Virtual Programming Vp-Asp 5.0

047910
CVSS 10.0 - CRITICAL
Attack vector
NETWORK
Attack complexity
LOW
Privileges required
NONE
Confidentiality impact
COMPLETE
Integrity impact
COMPLETE
Availability impact
COMPLETE
network
low complexity
virtual-programming
critical
exploit available
NVD
Published: 2003-08-18
Updated: 2016-10-18

Summary

SQL injection vulnerability in shopexd.asp for VP-ASP allows remote attackers to gain administrator privileges via the id parameter.

Vulnerable Configurations

Part Description Count
Application
Virtual_Programming
1

Exploit-Db

  • descriptionVirtual Programming VP-ASP 5.00 shopexd.asp SQL Injection Vulnerability (1). CVE-2003-0560. Webapps exploit for asp platform
    idEDB-ID:22888
    last seen2016-02-02
    modified2003-07-10
    published2003-07-10
    reporterTioEuy & AresU
    sourcehttps://www.exploit-db.com/download/22888/
    titleVirtual Programming VP-ASP 5.00 shopexd.asp SQL Injection Vulnerability 1
  • descriptionVirtual Programming VP-ASP 5.00 shopexd.asp SQL Injection Vulnerability (2). CVE-2003-0560. Webapps exploit for asp platform
    idEDB-ID:22889
    last seen2016-02-02
    modified2003-07-10
    published2003-07-10
    reporterBosen & TioEuy
    sourcehttps://www.exploit-db.com/download/22889/
    titleVirtual Programming VP-ASP 5.00 shopexd.asp SQL Injection Vulnerability 2

References