Vulnerabilities > CVE-2006-1586 - SQL Injection vulnerability in ISP Site Man Admin_Login.ASP

047910
CVSS 7.5 - HIGH
Attack vector
NETWORK
Attack complexity
LOW
Privileges required
NONE
Confidentiality impact
PARTIAL
Integrity impact
PARTIAL
Availability impact
PARTIAL
network
low complexity
internet-solutions-professionals
exploit available

Summary

SQL injection vulnerability in admin_login.asp in ISP of Egypt SiteMan allows remote attackers to execute arbitrary SQL commands via the pass parameter.

Vulnerable Configurations

Part Description Count
Application
Internet_Solutions_Professionals
1

Exploit-Db

descriptionISP Site Man 0 Admin_Login.ASP SQL Injection Vulnerability. CVE-2006-1586 . Webapps exploit for asp platform
idEDB-ID:27552
last seen2016-02-03
modified2006-04-01
published2006-04-01
reporters3rv3r_hack3r
sourcehttps://www.exploit-db.com/download/27552/
titleISP Site Man - Admin_Login.ASP SQL Injection Vulnerability