Vulnerabilities > CVE-2006-4592 - SQL Injection vulnerability in 8Pixel.net SimpleBlog ID Parameter
Attack vector
NETWORK Attack complexity
LOW Privileges required
NONE Confidentiality impact
PARTIAL Integrity impact
PARTIAL Availability impact
PARTIAL Summary
Incomplete blacklist vulnerability in default.asp in 8pixel.net Simple Blog 2.3 and earlier allows remote attackers to conduct SQL injection attacks via ">" characters in the id parameter, which are not filtered by the protection mechanism.
Vulnerable Configurations
Part | Description | Count |
---|---|---|
Application | 4 |
Exploit-Db
description | SimpleBlog <= 2.3 (id) Remote SQL Injection Vulnerability. CVE-2006-4592. Webapps exploit for asp platform |
file | exploits/asp/webapps/2296.txt |
id | EDB-ID:2296 |
last seen | 2016-01-31 |
modified | 2006-09-04 |
platform | asp |
port | |
published | 2006-09-04 |
reporter | Vipsta/MurderSkillz |
source | https://www.exploit-db.com/download/2296/ |
title | SimpleBlog <= 2.3 id Remote SQL Injection Vulnerability |
type | webapps |