CVE-2006-2179

Smartwin Technology Cyberoffice Warehouse Builder - SQL Injection

Title source: rule
STIX 2.1

Exploitation Summary

EIP tracks 2 public exploits for CVE-2006-2179. PoCs published by r0t.

AI-analyzed exploit summary The provided text describes SQL injection and XSS vulnerabilities in CyberBuild but does not include functional exploit code. It references a generic example URL for SQLi without implementation details.

Description

Multiple SQL injection vulnerabilities in CyberBuild allow remote attackers to execute arbitrary SQL commands via the (1) SessionID parameter to login.asp or (2) ProductIndex parameter to browse0.htm.

Exploits (2)

exploitdb WRITEUP VERIFIED
by r0t · textwebappsasp
https://www.exploit-db.com/exploits/27813

The provided text describes SQL injection and XSS vulnerabilities in CyberBuild but does not include functional exploit code. It references a generic example URL for SQLi without implementation details.

Classification
Writeup 90%
Attack Type
Sqli | Xss
Complexity
Trivial
Reliability
Theoretical
Target: CyberBuild (version unspecified)
No auth needed
Prerequisites: Access to the vulnerable login.asp endpoint
MITRE ATT&CK
devstral-2 · analyzed Feb 16, 2026 Full analysis →
exploitdb WRITEUP VERIFIED
by r0t · textwebappsasp
https://www.exploit-db.com/exploits/27814

The provided text describes SQL injection and XSS vulnerabilities in CyberBuild due to improper input sanitization. It includes a generic example URL demonstrating SQL injection but lacks actual exploit code.

Classification
Writeup 80%
Attack Type
Sqli | Xss
Complexity
Trivial
Reliability
Theoretical
Target: CyberBuild (version unspecified)
No auth needed
Prerequisites: Access to the vulnerable application URL
devstral-2 · analyzed Feb 16, 2026 Full analysis →

References (7)

Core 7
Core References
Third Party Advisory vdb-entry x_refsource_vupen
http://www.vupen.com/english/advisories/2006/1630
Third Party Advisory, VDB Entry vdb-entry x_refsource_osvdb
http://www.osvdb.org/25195
Third Party Advisory, VDB Entry vdb-entry x_refsource_osvdb
http://www.osvdb.org/25196
Third Party Advisory x_refsource_misc
http://pridels0.blogspot.com/2006/05/cyberbuild-vuln.html
Third Party Advisory, VDB Entry vdb-entry x_refsource_bid
http://www.securityfocus.com/bid/17829
Third Party Advisory, VDB Entry vdb-entry x_refsource_xf
https://exchange.xforce.ibmcloud.com/vulnerabilities/26201
Exploit, Vendor Advisory third-party-advisory x_refsource_secunia
http://secunia.com/advisories/19889

Scores

EPSS 0.0267
EPSS Percentile 83.8%

Details

Status published
Products (1)
smartwin_technology/cyberoffice_warehouse_builder
Published May 04, 2006
Tracked Since Feb 18, 2026