Vulnerabilities > CVE-2006-0669 - Unspecified vulnerability in Gasoft GAS Forum Light
Attack vector
UNKNOWN Attack complexity
UNKNOWN Privileges required
UNKNOWN Confidentiality impact
UNKNOWN Integrity impact
UNKNOWN Availability impact
UNKNOWN gasoft
exploit available
Summary
Multiple SQL injection vulnerabilities in archive.asp in GA's Forum Light allow remote attackers to execute arbitrary SQL commands via the (1) Forum and (2) pages parameter. NOTE: SecurityTracker says that the vendor has disputed this issue, saying that GA Forum Light does not use an SQL database. SecurityTracker's research indicates that the original problem could be due to a vbscript parsing error based on invalid arguments
Vulnerable Configurations
Part | Description | Count |
---|---|---|
Application | 1 |
Exploit-Db
description | GA's Forum Light 0 Archive.ASP SQL Injection Vulnerability. CVE-2006-0669 . Webapps exploit for asp platform |
id | EDB-ID:27174 |
last seen | 2016-02-03 |
modified | 2006-02-07 |
published | 2006-02-07 |
reporter | Dj_Eyes |
source | https://www.exploit-db.com/download/27174/ |
title | GA's Forum Light - Archive.ASP SQL Injection Vulnerability |