Vulnerabilities > CVE-2006-0624 - SQL Injection vulnerability in Webeveyn Whomp! Real Estate Manager Login
Attack vector
NETWORK Attack complexity
LOW Privileges required
NONE Confidentiality impact
PARTIAL Integrity impact
PARTIAL Availability impact
PARTIAL Summary
SQL injection vulnerability in check.asp in Whomp Real Estate Manager XP 2005 allows remote attackers to execute arbitrary SQL commands via the (1) username and (2) password parameters.
Vulnerable Configurations
| Part | Description | Count |
|---|---|---|
| Application | 1 |
Exploit-Db
| description | Webeveyn Whomp! Real Estate Manager 2005 Login SQL Injection Vulnerability. CVE-2006-0624 . Webapps exploit for asp platform |
| id | EDB-ID:27169 |
| last seen | 2016-02-03 |
| modified | 2006-02-08 |
| published | 2006-02-08 |
| reporter | night_warrior771 |
| source | https://www.exploit-db.com/download/27169/ |
| title | Webeveyn Whomp! Real Estate Manager 2005 Login SQL Injection Vulnerability |
References
- http://secunia.com/advisories/18780
- http://securityreason.com/securityalert/418
- http://www.osvdb.org/22969
- http://www.securityfocus.com/archive/1/424389/100/0/threaded
- http://www.securityfocus.com/bid/16544
- http://www.vupen.com/english/advisories/2006/0489
- https://exchange.xforce.ibmcloud.com/vulnerabilities/24592