Vulnerabilities > CVE-2007-1566 - SQL Injection vulnerability in NetVios Portal Page.ASP
Attack vector
NETWORK Attack complexity
LOW Privileges required
NONE Confidentiality impact
PARTIAL Integrity impact
PARTIAL Availability impact
PARTIAL Summary
SQL injection vulnerability in News/page.asp in NetVIOS Portal allows remote attackers to execute arbitrary SQL commands via the NewsID parameter. NOTE: this issue might be the same as CVE-2006-5954.
Vulnerable Configurations
Part | Description | Count |
---|---|---|
Application | 1 |
Exploit-Db
description NetVIOS <= 2.0 (page.asp) Remote SQL Injection Vulnerability. CVE-2006-5954,CVE-2007-1566. Webapps exploit for asp platform file exploits/asp/webapps/2780.txt id EDB-ID:2780 last seen 2016-01-31 modified 2006-11-14 platform asp port published 2006-11-14 reporter ajann source https://www.exploit-db.com/download/2780/ title NetVIOS <= 2.0 page.asp Remote SQL Injection Vulnerability type webapps description NetVios Portal (page.asp) Remote SQL Injection Vulnerability. CVE-2006-5954,CVE-2007-1566. Webapps exploit for asp platform file exploits/asp/webapps/3520.txt id EDB-ID:3520 last seen 2016-01-31 modified 2007-03-19 platform asp port published 2007-03-19 reporter parad0x source https://www.exploit-db.com/download/3520/ title NetVios Portal page.asp Remote SQL Injection Vulnerability type webapps