Vulnerabilities > CVE-2006-0973 - SQL Injection vulnerability in PHPWebSite Topics.PHP

047910
CVSS 7.5 - HIGH
Attack vector
NETWORK
Attack complexity
LOW
Privileges required
NONE
Confidentiality impact
PARTIAL
Integrity impact
PARTIAL
Availability impact
PARTIAL
network
low complexity
phpwebsite
exploit available

Summary

SQL injection vulnerability in topics.php in Appalachian State University phpWebSite 0.10.2 and earlier allows remote attackers to execute arbitrary SQL commands via the topic parameter.

Exploit-Db

descriptionphpWebSite <= 0.10.0-full (topics.php) Remote SQL Injection Exploit. CVE-2006-0973. Webapps exploit for php platform
fileexploits/php/webapps/1525.pl
idEDB-ID:1525
last seen2016-01-31
modified2006-02-24
platformphp
port
published2006-02-24
reporterSnIpEr_SA
sourcehttps://www.exploit-db.com/download/1525/
titlephpWebSite <= 0.10.0-full topics.php Remote SQL Injection Exploit
typewebapps