Vulnerabilities > CVE-2006-4590 - Unspecified vulnerability in Jetstat.Com JS ASP FAQ Manager
Attack vector
UNKNOWN Attack complexity
UNKNOWN Privileges required
UNKNOWN Confidentiality impact
UNKNOWN Integrity impact
UNKNOWN Availability impact
UNKNOWN Summary
SQL injection vulnerability in admin/default.asp in Jetstat.com JS ASP Faq Manager 1.10 and earlier allows remote attackers to execute arbitrary SQL commands via the uid parameter, a different vector than CVE-2006-4463. NOTE: the provenance of this information is unknown; the details are obtained from third party information.
Vulnerable Configurations
| Part | Description | Count |
|---|---|---|
| Application | 1 |
References
- http://secunia.com/advisories/21674
- http://secunia.com/advisories/21674
- http://www.osvdb.org/28266
- http://www.osvdb.org/28266
- http://www.securityfocus.com/bid/19761
- http://www.securityfocus.com/bid/19761
- http://www.vupen.com/english/advisories/2006/3415
- http://www.vupen.com/english/advisories/2006/3415
- https://exchange.xforce.ibmcloud.com/vulnerabilities/28638
- https://exchange.xforce.ibmcloud.com/vulnerabilities/28638