Vulnerabilities > CVE-2006-6207 - Unspecified vulnerability in Lynx Internet Solutions Evolve Merchant

047910
CVSS 0.0 - NONE
Attack vector
UNKNOWN
Attack complexity
UNKNOWN
Privileges required
UNKNOWN
Confidentiality impact
UNKNOWN
Integrity impact
UNKNOWN
Availability impact
UNKNOWN
lynx-internet-solutions
exploit available

Summary

SQL injection vulnerability in products.asp in Evolve shopping cart (aka Evolve Merchant) allows remote attackers to execute arbitrary SQL commands via the partno parameter. NOTE: the vendor disputes this issue, stating that it is a forced SQL error

Vulnerable Configurations

Part Description Count
Application
Lynx_Internet_Solutions
1

Exploit-Db

descriptionEvolve Shopping Cart products.ASP SQL Injection Vulnerability. CVE-2006-6207. Webapps exploit for asp platform
idEDB-ID:29197
last seen2016-02-03
modified2006-11-27
published2006-11-27
reporterAria-Security Team
sourcehttps://www.exploit-db.com/download/29197/
titleEvolve Shopping Cart products.ASP SQL Injection Vulnerability