Lumension® Endpoint Intelligence Center

Intelligence Center » Browse All Vulnerabilities » CVE-2006-0624

Overview

Vulnerability Score 7.5 7.5
CVE Id CVE-2006-0624
Last Modified 07 Mar 2011 09:30:27
Published 08 Feb 2006 09:02:00
Confidentiality Impact PARTIAL PARTIAL
Integrity Impact PARTIAL PARTIAL
Availability Impact PARTIAL PARTIAL
Access Vector NETWORK
Access Complexity LOW
Authentication NONE

CVE-2006-0624

Summary

SQL injection vulnerability in check.asp in Whomp Real Estate Manager XP 2005 allows remote attackers to execute arbitrary SQL commands via the (1) username and (2) password parameters.

Vulnerable Systems

Application

  • Webeveyn Whomp Real Estate Manager Xp 2005


References

VUPEN - ADV-2006-0489

BID - 16544

BUGTRAQ - 20060208 Whomp Real Estate Manager XP 2005 Sql Injection

XF - whomp-login-sql-injection(24592)

OSVDB - 22969

SREASON - 418

SECUNIA - 18780


Last Updated: 27 May 2016 10:41:44