Vulnerabilities > CVE-2006-6861 - Input Validation vulnerability in Outfront Spooky Login 2.7
Attack vector
NETWORK Attack complexity
LOW Privileges required
NONE Confidentiality impact
COMPLETE Integrity impact
COMPLETE Availability impact
COMPLETE Summary
Multiple SQL injection vulnerabilities in Outfront Spooky Login 2.7 allow remote attackers to execute arbitrary SQL commands via (1) the UserUpdate parameter to login/register.asp or (2) unspecified parameters to includes/a_register.asp.
Vulnerable Configurations
Part | Description | Count |
---|---|---|
Application | 1 |
Exploit-Db
description | Spooky 2.7 login/register.asp SQL Injection. CVE-2006-6861. Webapps exploit for asp platform |
id | EDB-ID:29373 |
last seen | 2016-02-03 |
modified | 2006-12-30 |
published | 2006-12-30 |
reporter | Doz |
source | https://www.exploit-db.com/download/29373/ |
title | Spooky 2.7 login/register.asp SQL Injection |