CVE-2006-6117

Fipsasp Fipsgallery < 1.5 - SQL Injection

Title source: rule
STIX 2.1

Description

SQL injection vulnerability in index1.asp in fipsGallery 1.5 and earlier allows remote attackers to execute arbitrary SQL commands via the which parameter.

Exploits (1)

exploitdb WORKING POC VERIFIED
by ajann · textwebappsasp
https://www.exploit-db.com/exploits/2829

References (4)

Core 4
Core References
Third Party Advisory vdb-entry x_refsource_vupen
http://www.vupen.com/english/advisories/2006/4683
Exploit, Third Party Advisory exploit x_refsource_exploit-db
https://www.exploit-db.com/exploits/2829
Exploit vdb-entry x_refsource_bid
http://www.securityfocus.com/bid/21254
Vendor Advisory third-party-advisory x_refsource_secunia
http://secunia.com/advisories/23056

Scores

EPSS 0.0123
EPSS Percentile 79.3%

Details

Status published
Products (1)
fipsasp/fipsgallery < 1.5
Published Nov 26, 2006
Tracked Since Feb 18, 2026