Vulnerabilities > CVE-2006-0719 - SQL Injection vulnerability in Deltascripts PHP Classifieds 6.18/6.19/6.20
Attack vector
NETWORK Attack complexity
LOW Privileges required
NONE Confidentiality impact
PARTIAL Integrity impact
PARTIAL Availability impact
PARTIAL Summary
SQL injection vulnerability in member_login.php in PHP Classifieds 6.18 through 6.20 allows remote attackers to execute arbitrary SQL commands via the (1) username parameter, which is used by the E-mail address field, and (2) password parameter.
Vulnerable Configurations
Part | Description | Count |
---|---|---|
Application | 3 |
Exploit-Db
description | DeltaScripts PHP Classifieds 6.20 Member_Login.PHP SQL Injection Vulnerability. CVE-2006-0719. Webapps exploit for php platform |
id | EDB-ID:27214 |
last seen | 2016-02-03 |
modified | 2006-02-14 |
published | 2006-02-14 |
reporter | Audun Larsen |
source | https://www.exploit-db.com/download/27214/ |
title | DeltaScripts PHP Classifieds 6.20 Member_Login.PHP SQL Injection Vulnerability |