CVE-2006-0581

2006-02-0801:00:00

mitre

www.cve.org

7.9 High

AI Score

Confidence

Low

0.004 Low

EPSS

Percentile

72.7%

JSON

SQL injection vulnerability in Hosting Controller 6.1 Hotfix 2.8 allows remote authenticated users to execute arbitrary SQL commands via the (1) GatewayID parameter in an add action in AddGatewaySettings.asp and (2) IP parameter in IPManager.asp.

References

secunia.com/advisories/18731

securitytracker.com/id?1015584

www.osvdb.org/22982

www.osvdb.org/22983

www.vupen.com/english/advisories/2006/0460

exchange.xforce.ibmcloud.com/vulnerabilities/24537