Vulnerabilities > Iexpress > Estate Agent Manager > 1.3

DATE	CVE	VULNERABILITY TITLE	RISK
2006-11-16	CVE-2006-5934	SQL Injection vulnerability in Iexpress Estate Agent Manager 1.3 SQL injection vulnerability in admin/default.asp in Estate Agent Manager 1.3 and earlier allows remote attackers to execute arbitrary SQL commands via the UserName field. network low complexity iexpress	7.5

CVE is a registered MITRE Corporation trademark and MITRE's CVE website is the authoritative source of CVE content. CWE is a registered MITRE Corporation trademark and MITRE's CWE website is the authoritative source of CWE content.