CVE-2006-6559

Lotfian Request For Travel 1.0 - SQL Injection

Title source: llm

Description

SQL injection vulnerability in ProductDetails.asp in Lotfian Request For Travel 1.0 allows remote attackers to execute arbitrary SQL commands via the PID parameter.

Exploits (1)

exploitdb WORKING POC VERIFIED

by ajann · textwebappsasp

https://www.exploit-db.com/exploits/2908

View Code ZIP pw:eip

References (3)

Core 3

Core References

Third Party Advisory vdb-entry x_refsource_vupen

http://www.vupen.com/english/advisories/2006/4933

Exploit, Third Party Advisory exploit x_refsource_exploit-db

https://www.exploit-db.com/exploits/2908

Third Party Advisory, VDB Entry vdb-entry x_refsource_xf

https://exchange.xforce.ibmcloud.com/vulnerabilities/30836

Scores

EPSS 0.0112

EPSS Percentile 78.4%

Details

Status published

Products (1)

lotfian/request_for_travel 1.0

Published Dec 14, 2006

Tracked Since Feb 18, 2026