Vulnerabilities > CVE-2006-1489 - Unspecified vulnerability in Fusionzone Couponzone 4.2
Attack vector
UNKNOWN Attack complexity
UNKNOWN Privileges required
UNKNOWN Confidentiality impact
UNKNOWN Integrity impact
UNKNOWN Availability impact
UNKNOWN fusionzone
exploit available
Summary
Multiple SQL injection vulnerabilities in FusionZONE CouponZONE local.cfm in 4.2 and earlier allow remote attackers to execute arbitrary SQL commands via the (1) companyid, (2) scat, and (3) coid parameters.
Vulnerable Configurations
| Part | Description | Count |
|---|---|---|
| Application | 1 |
Exploit-Db
| description | FusionZONE CouponZONE 4.2 Multiple SQL Injection Vulnerabilities. CVE-2006-1489. Webapps exploit for cfm platform |
| id | EDB-ID:27491 |
| last seen | 2016-02-03 |
| modified | 2006-03-27 |
| published | 2006-03-27 |
| reporter | r0t |
| source | https://www.exploit-db.com/download/27491/ |
| title | FusionZONE CouponZONE 4.2 - Multiple SQL Injection Vulnerabilities |
References
- http://pridels0.blogspot.com/2006/03/couponzone-v42-multiple-vuln.html
- http://pridels0.blogspot.com/2006/03/couponzone-v42-multiple-vuln.html
- http://www.osvdb.org/24179
- http://www.osvdb.org/24179
- http://www.securityfocus.com/bid/17274
- http://www.securityfocus.com/bid/17274
- https://exchange.xforce.ibmcloud.com/vulnerabilities/25576
- https://exchange.xforce.ibmcloud.com/vulnerabilities/25576