Vulnerabilities > CVE-2006-0939 - Unspecified vulnerability in Dci-Designs Dci-Taskeen 1.03
Attack vector
UNKNOWN Attack complexity
UNKNOWN Privileges required
UNKNOWN Confidentiality impact
UNKNOWN Integrity impact
UNKNOWN Availability impact
UNKNOWN dci-designs
exploit available
Summary
SQL injection vulnerability in DCI-Taskeen 1.03 allows remote attackers to execute arbitrary SQL commands via the (1) id or (2) action parameter to (a) basket.php, or (3) id or (4) page parameter to (b) cat.php.
Vulnerable Configurations
Part | Description | Count |
---|---|---|
Application | 1 |
Exploit-Db
description DCI-Taskeen 1.03 cat.php Multiple Parameter SQL Injection. CVE-2006-0939. Webapps exploit for php platform id EDB-ID:27314 last seen 2016-02-03 modified 2006-02-25 published 2006-02-25 reporter Linux_Drox source https://www.exploit-db.com/download/27314/ title DCI-Taskeen 1.03 cat.php Multiple Parameter SQL Injection description DCI-Taskeen 1.03 basket.php Multiple Parameter SQL Injection. CVE-2006-0939. Webapps exploit for php platform id EDB-ID:27313 last seen 2016-02-03 modified 2006-02-25 published 2006-02-25 reporter Linux_Drox source https://www.exploit-db.com/download/27313/ title DCI-Taskeen 1.03 basket.php Multiple Parameter SQL Injection
References
- http://securityreason.com/securityalert/495
- http://securityreason.com/securityalert/495
- http://securitytracker.com/id?1015685
- http://securitytracker.com/id?1015685
- http://www.securityfocus.com/archive/1/426082
- http://www.securityfocus.com/archive/1/426082
- http://www.securityfocus.com/bid/16828
- http://www.securityfocus.com/bid/16828
- https://exchange.xforce.ibmcloud.com/vulnerabilities/24963
- https://exchange.xforce.ibmcloud.com/vulnerabilities/24963