Vulnerabilities > CVE-2006-5017 - Input Validation vulnerability in E-Vision CMS 1.0
Attack vector
NETWORK Attack complexity
LOW Privileges required
NONE Confidentiality impact
PARTIAL Integrity impact
PARTIAL Availability impact
PARTIAL Summary
SQL injection vulnerability in admin/all_users.php in Szava Gyula and Csaba Tamas e-Vision CMS, probably 1.0, allows remote attackers to execute arbitrary SQL commands via the from parameter.
Vulnerable Configurations
Part | Description | Count |
---|---|---|
Application | 1 |
Exploit-Db
description | e-Vision CMS 2.0 (all_users.php) Remote SQL Injection Exploit. CVE-2006-5017. Webapps exploit for php platform |
id | EDB-ID:2418 |
last seen | 2016-01-31 |
modified | 2006-09-22 |
published | 2006-09-22 |
reporter | HACKERS PAL |
source | https://www.exploit-db.com/download/2418/ |
title | e-Vision CMS 2.0 all_users.php Remote SQL Injection Exploit |