Vulnerabilities > CVE-2006-6070 - SQL-Injection vulnerability in ASP-Nuke
Attack vector
NETWORK Attack complexity
LOW Privileges required
NONE Confidentiality impact
PARTIAL Integrity impact
PARTIAL Availability impact
PARTIAL Summary
SQL injection vulnerability in module/account/register/register.asp in ASP Nuke 0.80 and earlier allows remote attackers to execute arbitrary SQL commands via the StateCode parameter.
Vulnerable Configurations
Part | Description | Count |
---|---|---|
Application | 1 |
Exploit-Db
description | ASPNuke <= 0.80 (register.asp) Remote SQL Injection Vulnerability. CVE-2006-6070. Webapps exploit for asp platform |
file | exploits/asp/webapps/2813.txt |
id | EDB-ID:2813 |
last seen | 2016-01-31 |
modified | 2006-11-19 |
platform | asp |
port | |
published | 2006-11-19 |
reporter | ajann |
source | https://www.exploit-db.com/download/2813/ |
title | ASPNuke <= 0.80 register.asp Remote SQL Injection Vulnerability |
type | webapps |