Vulnerabilities > CVE-2006-5145 - Input Validation vulnerability in Olate Olatedownload 3.4.0
Attack vector
NETWORK Attack complexity
LOW Privileges required
NONE Confidentiality impact
PARTIAL Integrity impact
PARTIAL Availability impact
PARTIAL Summary
Multiple SQL injection vulnerabilities in OlateDownload 3.4.0 allow remote attackers to execute arbitrary SQL commands via the (1) page parameter in details.php or the (2) query parameter in search.php.
Vulnerable Configurations
Part | Description | Count |
---|---|---|
Application | 1 |
Exploit-Db
description OlateDownload 3.4 search.php query Parameter SQL Injection. CVE-2006-5145. Webapps exploit for php platform id EDB-ID:28731 last seen 2016-02-03 modified 2006-09-29 published 2006-09-29 reporter Hessam-x source https://www.exploit-db.com/download/28731/ title OlateDownload 3.4 - search.php query Parameter SQL Injection description OlateDownload 3.4 details.php page Parameter SQL Injection. CVE-2006-5145. Webapps exploit for php platform id EDB-ID:28730 last seen 2016-02-03 modified 2006-09-29 published 2006-09-29 reporter Hessam-x source https://www.exploit-db.com/download/28730/ title OlateDownload 3.4 details.php page Parameter SQL Injection