Exploitation Summary
EIP tracks 1 public exploit for CVE-2007-6269. PoCs published by Adrian Pastor.
AI-analyzed exploit summary This exploit demonstrates SQL injection and XSS vulnerabilities in Absolute News Manager .NET 5.1 by providing multiple crafted URLs targeting different parameters. The payloads are designed to inject arbitrary SQL queries or script code into the application.
Description
Multiple SQL injection vulnerabilities in xlaabsolutenm.aspx in Absolute News Manager.NET 5.1 allow remote attackers to execute arbitrary SQL commands via the (1) z, (2) pz, (3) ord, and (4) sort parameters.
Exploits (1)
This exploit demonstrates SQL injection and XSS vulnerabilities in Absolute News Manager .NET 5.1 by providing multiple crafted URLs targeting different parameters. The payloads are designed to inject arbitrary SQL queries or script code into the application.