Vulnerabilities > CVE-2006-6807 - SQL Injection vulnerability in Ananda Real Estate List.ASP
Attack vector
NETWORK Attack complexity
LOW Privileges required
NONE Confidentiality impact
PARTIAL Integrity impact
PARTIAL Availability impact
PARTIAL Summary
SQL injection vulnerability in list.asp in Softwebs Nepal (aka Ananda Raj Pandey) Ananda Real Estate 3.4 and earlier allows remote attackers to execute arbitrary SQL commands via the agent parameter.
Vulnerable Configurations
Part | Description | Count |
---|---|---|
Application | 1 |
Exploit-Db
description Ananda Real Estate <= 3.4 (agent) Remote SQL Injection Vulnerability. CVE-2006-6807,CVE-2010-4782. Webapps exploit for asp platform file exploits/asp/webapps/3001.txt id EDB-ID:3001 last seen 2016-01-31 modified 2006-12-24 platform asp port published 2006-12-24 reporter ajann source https://www.exploit-db.com/download/3001/ title Ananda Real Estate <= 3.4 agent Remote SQL Injection Vulnerability type webapps description Ananda Real Estate 3.4 (list.asp) Multiple SQL Injection. CVE-2006-6807,CVE-2010-4782. Webapps exploit for asp platform file exploits/asp/webapps/15661.txt id EDB-ID:15661 last seen 2016-02-01 modified 2010-12-02 platform asp port published 2010-12-02 reporter underground-stockholm.com source https://www.exploit-db.com/download/15661/ title Ananda Real Estate 3.4 list.asp Multiple SQL Injection type webapps