Vulnerabilities > CVE-2006-6722 - Unspecified vulnerability in Jelle DE VOS Bandwebsite 1.5

047910
CVSS 7.5 - HIGH
Attack vector
NETWORK
Attack complexity
LOW
Privileges required
NONE
Confidentiality impact
PARTIAL
Integrity impact
PARTIAL
Availability impact
PARTIAL
network
low complexity
jelle-de-vos
exploit available

Summary

Bandwebsite (aka Bandsite portal system) 1.5 allows remote attackers to create administrative accounts via a direct request to admin.php with the Login parameter set to 1.

Vulnerable Configurations

Part Description Count
Application
Jelle_De_Vos
1

Exploit-Db

descriptionBandwebsite <= 1.5 (Login) Remote Add Admin Exploit. CVE-2006-6722. Webapps exploit for php platform
fileexploits/php/webapps/2938.html
idEDB-ID:2938
last seen2016-01-31
modified2006-12-16
platformphp
port
published2006-12-16
reporterH0tTurk-
sourcehttps://www.exploit-db.com/download/2938/
titleBandwebsite <= 1.5 Login Remote Add Admin Exploit
typewebapps