Vulnerabilities > CVE-2006-2296 - SQL Injection vulnerability in EDirectoryPro Search_result.ASP
Attack vector
NETWORK Attack complexity
LOW Privileges required
NONE Confidentiality impact
PARTIAL Integrity impact
PARTIAL Availability impact
NONE Summary
SQL injection vulnerability in search_result.asp in EDirectoryPro 2.0 and earlier allows remote attackers to execute arbitrary SQL commands via the keyword parameter. NOTE: the provenance of this information is unknown; the details are obtained from third party information.
Vulnerable Configurations
Part | Description | Count |
---|---|---|
Application | 1 |
Exploit-Db
description | EDirectoryPro Search_result.ASP SQL Injection Vulnerability. CVE-2006-2296. Webapps exploit for asp platform |
id | EDB-ID:27849 |
last seen | 2016-02-03 |
modified | 2006-05-09 |
published | 2006-05-09 |
reporter | Dj_Eyes |
source | https://www.exploit-db.com/download/27849/ |
title | EDirectoryPro Search_result.ASP SQL Injection Vulnerability |