Vulnerability Details CVE-2006-5927
SQL injection vulnerability in cpLogin.asp in ASP Scripter Easy Portal 1.4 and Live Support 1.3 allows remote attackers to execute arbitrary SQL commands via the Password parameter.
Exploit prediction scoring system (EPSS) score
EPSS Score 0.006
EPSS Ranking 68.3%
CVSS Severity
CVSS v2 Score 7.5
References
- http://secunia.com/advisories/22856
- http://securityreason.com/securityalert/1874
- http://www.securityfocus.com/archive/1/451370/100/0/threaded
- http://www.securityfocus.com/bid/21031
- http://www.vupen.com/english/advisories/2006/4499
- http://secunia.com/advisories/22856
- http://securityreason.com/securityalert/1874
- http://www.securityfocus.com/archive/1/451370/100/0/threaded
- http://www.securityfocus.com/bid/21031
- http://www.vupen.com/english/advisories/2006/4499
Products affected by CVE-2006-5927
-
cpe:2.3:a:asp_scripter:easy_portal:1.4
-
cpe:2.3:a:asp_scripter:live_support:1.3