CVE-2006-6337

Aspee/Dogantepe Ziyaretci Defteri - SQL Injection

Title source: llm

Description

Multiple SQL injection vulnerabilities in giris.asp in Aspee and Dogantepe Ziyaretci Defteri allow remote attackers to execute arbitrary SQL commands via the (1) kullanici or (2) parola parameter.

Exploits (1)

exploitdb WORKING POC VERIFIED

by ShaFuq31 · htmlwebappsasp

https://www.exploit-db.com/exploits/29216

View Code ZIP pw:eip

References (7)

[Third Party Advisory, VDB Entry] http://www.securityfocus.com/bid/21627

[Vendor Advisory] http://secunia.com/advisories/23291

[Vendor Advisory] http://www.vupen.com/english/advisories/2006/4825

[Third Party Advisory, VDB Entry] http://www.securityfocus.com/archive/1/454589/100/0/threaded

[Third Party Advisory, VDB Entry] https://exchange.xforce.ibmcloud.com/vulnerabilities/30919

[Third Party Advisory, VDB Entry] http://www.securityfocus.com/archive/1/453234/100/0/threaded

[Exploit] http://www.securityfocus.com/bid/21398

Scores

EPSS 0.0076

EPSS Percentile 73.4%

Details

CWE

CWE-89

Status published

Products (1)

aspindir/aspee_ziyaretci_defteri

Published Dec 07, 2006

Tracked Since Feb 18, 2026