Vulnerabilities > CVE-2006-2010 - SQL Injection vulnerability in Bloggage Check_login.ASP

047910
CVSS 7.5 - HIGH
Attack vector
NETWORK
Attack complexity
LOW
Privileges required
NONE
Confidentiality impact
PARTIAL
Integrity impact
PARTIAL
Availability impact
PARTIAL
network
low complexity
paras-chopra

Summary

Multiple SQL injection vulnerabilities in check_login.asp in Bloggage allow remote attackers to execute arbitrary SQL commands via the (1) acc_name and (2) password parameter.

Vulnerable Configurations

Part Description Count
Application
Paras_Chopra
1