Exploitation Summary
EIP tracks 4 public exploits for CVE-2006-6816. PoCs published by Doz.
AI-analyzed exploit summary The provided text describes a SQL injection vulnerability in DMXReady Secure Login Manager 1.0, where unsanitized user input in the 'sent' parameter can be exploited. No actual exploit code is included, only a description and an example URL.
Description
Multiple SQL injection vulnerabilities in DMXReady Secure Login Manager 1.0 allow remote attackers to execute arbitrary SQL commands via unspecified parameters to (1) set_preferences.asp, (2) send_password_preferences.asp, and (3) SecureLoginManager/list.asp in the Local-Admin Panel; (4) the sent parameter to (a) login.asp, (b) content.asp, and (c) members.asp in the Remote-WebSite; and (5) the sent parameter to applications/SecureLoginManager/inc_secureloginmanager.asp in the Live Demo.
Exploits (4)
The provided text describes a SQL injection vulnerability in DMXReady Secure Login Manager 1.0, where unsanitized user input in the 'sent' parameter can be exploited. No actual exploit code is included, only a description and an example URL.
The provided text describes a SQL injection vulnerability in DMXReady Secure Login Manager 1.0, where the 'sent' parameter in the login.asp page is vulnerable due to improper input sanitization. No actual exploit code is included, only a description and an example URL.
The provided text describes a SQL injection vulnerability in DMXReady Secure Login Manager 1.0, where user-supplied input via the 'sent' parameter is not properly sanitized. The exploit involves appending SQL queries to the URL to manipulate the database.
The provided text describes a SQL injection vulnerability in DMXReady Secure Login Manager 1.0, where unsanitized user input in the 'sent' parameter can be exploited. No actual exploit code is included, only a description and example URL.