CVE-2006-6806

Enthrallweb eMates 1.0 - SQL Injection

Title source: llm

Description

SQL injection vulnerability in newsdetail.asp in Enthrallweb eMates 1.0 allows remote attackers to execute arbitrary SQL commands via the ID parameter.

Exploits (1)

exploitdb WORKING POC VERIFIED

by ajann · perlwebappsasp

https://www.exploit-db.com/exploits/2990

View Code ZIP pw:eip

References (3)

[Exploit, Third Party Advisory] https://www.exploit-db.com/exploits/2990

[Third Party Advisory] http://www.vupen.com/english/advisories/2006/5158

[Exploit, Vendor Advisory] http://secunia.com/advisories/23521

Scores

EPSS 0.0106

EPSS Percentile 77.7%

Details

Status published

Products (1)

enthrallweb/emates 1.0

Published Dec 28, 2006

Tracked Since Feb 18, 2026