Vulnerabilities > CVE-2006-2263 - SQL Injection vulnerability in Virtual Programming Vp-Asp 6.00

Attack vector

NETWORK

Attack complexity

LOW

Privileges required

NONE

Confidentiality impact

PARTIAL

Integrity impact

PARTIAL

Availability impact

PARTIAL

network

low complexity

exploit available

NVD

Published: 2006-05-09

Updated: 2017-10-19

Summary

SQL injection vulnerability in shopcurrency.asp in VP-ASP 6.00 allows remote attackers to execute arbitrary SQL commands via the cid parameter.

Part	Description	Count
Application	Virtual_Programming Virtual Programming VP ASP 6.00	1

description	VP-ASP 6.00 (shopcurrency.asp) Remote SQL Injection Vulnerability. CVE-2006-2263. Webapps exploit for asp platform
file	exploits/asp/webapps/1759.txt
id	EDB-ID:1759
last seen	2016-01-31
modified	2006-05-06
platform	asp
port
published	2006-05-06
reporter	tracewar
source	https://www.exploit-db.com/download/1759/
title	VP-ASP 6.00 shopcurrency.asp Remote SQL Injection Vulnerability
type	webapps