Vulnerabilities > CVE-2006-4300 - Unspecified vulnerability in 8Pixel.Net Simple Blog

047910
CVSS 7.5 - HIGH
Attack vector
NETWORK
Attack complexity
LOW
Privileges required
NONE
Confidentiality impact
PARTIAL
Integrity impact
PARTIAL
Availability impact
PARTIAL
network
low complexity
8pixel-net
exploit available

Summary

SQL injection vulnerability in comments.asp in SimpleBlog 2.0 and earlier allows remote attackers to execute arbitrary SQL commands via the id parameter.

Vulnerable Configurations

Part Description Count
Application
8Pixel.Net
1

Exploit-Db

  • descriptionSimpleBlog <= 2.0 (comments.asp) Remote SQL Injection Exploit. CVE-2006-4300. Webapps exploit for php platform
    fileexploits/php/webapps/2232.pl
    idEDB-ID:2232
    last seen2016-01-31
    modified2006-08-20
    platformphp
    port
    published2006-08-20
    reporterASIANEAGLE
    sourcehttps://www.exploit-db.com/download/2232/
    titleSimpleBlog <= 2.0 comments.asp Remote SQL Injection Exploit
    typewebapps
  • descriptionSimpleBlog <= 2.0 (comments.asp) Remote SQL Injection Vulnerability. CVE-2006-4300. Webapps exploit for asp platform
    fileexploits/asp/webapps/2228.txt
    idEDB-ID:2228
    last seen2016-01-31
    modified2006-08-20
    platformasp
    port
    published2006-08-20
    reporterChironex Fleckeri
    sourcehttps://www.exploit-db.com/download/2228/
    titleSimpleBlog <= 2.0 comments.asp Remote SQL Injection Vulnerability
    typewebapps