CVE-2006-0184 | Vulnerability Database | Aqua Security

Multiple SQL injection vulnerabilities in AspTopSites allow remote attackers to execute arbitrary SQL commands via the (1) id parameter to goto.asp or (2) password parameter to includeloginuser.asp.

Affected Software

Name	Vendor	Start Version	End Version
Asptopsites	Mainenet_enterprises	*	*

References

http://archives.neohapsis.com/archives/fulldisclosure/2006-01/0351.html
http://secunia.com/advisories/18408
http://www.exploitlabs.com/files/advisories/EXPL-A-2006-001-asptopsites.txt
http://www.osvdb.org/22330
http://www.vupen.com/english/advisories/2006/0146
https://exchange.xforce.ibmcloud.com/vulnerabilities/24072
http://archives.neohapsis.com/archives/fulldisclosure/2006-01/0351.html
http://secunia.com/advisories/18408
http://www.exploitlabs.com/files/advisories/EXPL-A-2006-001-asptopsites.txt
http://www.osvdb.org/22330
http://www.vupen.com/english/advisories/2006/0146
https://exchange.xforce.ibmcloud.com/vulnerabilities/24072

NVD	https://nvd.nist.gov/vuln/detail/CVE-2006-0184
CWE	https://cwe.mitre.org/data/definitions/NVD-Other.html