Vulnerabilities > CVE-2006-6083 - Unspecified vulnerability in Creascripts Creadirectory 1.2

CVSS 0.0 - NONE

Attack vector

UNKNOWN

Attack complexity

UNKNOWN

Privileges required

UNKNOWN

Confidentiality impact

UNKNOWN

Integrity impact

UNKNOWN

Availability impact

UNKNOWN

creascripts

exploit available

NVD

Published: 2006-11-24

Updated: 2024-02-14

Summary

SQL injection vulnerability in search.asp in CreaScripts Creadirectory allows remote attackers to execute arbitrary SQL commands via the category parameter.

Vulnerable Configurations

Part	Description	Count
Application	Creascripts Creascripts Creadirectory 1.2	1

Exploit-Db

description	CreaDirectory 1.2 search.asp category Parameter SQL Injection. CVE-2006-6083 . Webapps exploit for asp platform
id	EDB-ID:29154
last seen	2016-02-03
modified	2006-11-21
published	2006-11-21
reporter	laurent gaffie
source	https://www.exploit-db.com/download/29154/
title	CreaDirectory 1.2 - search.asp category Parameter SQL Injection

References

http://s-a-p.ca/index.php?page=OurAdvisories&id=54
http://www.securityfocus.com/bid/21230
http://secunia.com/advisories/23067
http://www.vupen.com/english/advisories/2006/4665
https://exchange.xforce.ibmcloud.com/vulnerabilities/30471
http://www.securityfocus.com/archive/1/452241/100/0/threaded