CVE-2006-0624
Webeveyn Whomp Real Estate Manager XP 2005 - SQL Injection
Title source: ruleDescription
SQL injection vulnerability in check.asp in Whomp Real Estate Manager XP 2005 allows remote attackers to execute arbitrary SQL commands via the (1) username and (2) password parameters.
Exploits (1)
exploitdb
WORKING POC
VERIFIED
by night_warrior771 · textwebappsasp
https://www.exploit-db.com/exploits/27169
References (7)
Core 7
Core References
Exploit vdb-entry
x_refsource_bid
http://www.securityfocus.com/bid/16544
Third Party Advisory, VDB Entry vdb-entry
x_refsource_osvdb
http://www.osvdb.org/22969
Third Party Advisory third-party-advisory
x_refsource_secunia
http://secunia.com/advisories/18780
Third Party Advisory vdb-entry
x_refsource_vupen
http://www.vupen.com/english/advisories/2006/0489
Third Party Advisory third-party-advisory
x_refsource_sreason
http://securityreason.com/securityalert/418
Third Party Advisory, VDB Entry mailing-list
x_refsource_bugtraq
http://www.securityfocus.com/archive/1/424389/100/0/threaded
Third Party Advisory, VDB Entry vdb-entry
x_refsource_xf
https://exchange.xforce.ibmcloud.com/vulnerabilities/24592
Scores
EPSS
0.0173
EPSS Percentile
82.5%
Details
Status
published
Products (1)
webeveyn/whomp_real_estate_manager_xp_2005
Published
Feb 09, 2006
Tracked Since
Feb 18, 2026