CVE-2006-1586 - OpenCVE

SQL injection vulnerability in admin_login.asp in ISP of Egypt SiteMan allows remote attackers to execute arbitrary SQL commands via the pass parameter.

No CVSS v3.1

No CVSS v3.0

Access Vector Network

Access Complexity Low

Authentication None

Confidentiality Impact Partial

Integrity Impact Partial

Availability Impact Partial

AV:N/AC:L/Au:N/C:P/I:P/A:P

Vendors & Products
CPE Configurations

Vendors	Products
Internet Solutions Professionals	Site Man

Configuration 1 [-]

cpe:2.3:a:internet_solutions_professionals:site_man:*:*:*:*:*:*:*:*

References

Link	Resource
http://secunia.com/advisories/19500
http://www.osvdb.org/24362
http://www.securityfocus.com/archive/1/429607/100/0/threaded
http://www.securityfocus.com/bid/17347
http://www.vupen.com/english/advisories/2006/1190
https://exchange.xforce.ibmcloud.com/vulnerabilities/25595

History

No history.

MITRE Information

Status: PUBLISHED

Assigner: mitre

Published: 2006-04-02T21:00:00

Updated: 2018-10-18T14:57:01

Reserved: 2006-04-02T00:00:00

Link: CVE-2006-1586

JSON object: View

NVD Information

Status : Modified

Published: 2006-04-02T21:04:00.000

Modified: 2018-10-18T16:33:30.920

Link: CVE-2006-1586

JSON object: View

Redhat Information

No data.

CWE

NVD-CWE-Other

{"containers": {"cna": {"affected": [{"product": "n/a", "vendor": "n/a", "versions": [{"status": "affected", "version": "n/a"}]}], "datePublic": "2006-04-01T00:00:00", "descriptions": [{"lang": "en", "value": "SQL injection vulnerability in admin_login.asp in ISP of Egypt SiteMan allows remote attackers to execute arbitrary SQL commands via the pass parameter."}], "problemTypes": [{"descriptions": [{"description": "n/a", "lang": "en", "type": "text"}]}], "providerMetadata": {"dateUpdated": "2018-10-18T14:57:01", "orgId": "8254265b-2729-46b6-b9e3-3dfca2d5bfca", "shortName": "mitre"}, "references": [{"name": "24362", "tags": ["vdb-entry", "x_refsource_OSVDB"], "url": "http://www.osvdb.org/24362"}, {"name": "19500", "tags": ["third-party-advisory", "x_refsource_SECUNIA"], "url": "http://secunia.com/advisories/19500"}, {"name": "ADV-2006-1190", "tags": ["vdb-entry", "x_refsource_VUPEN"], "url": "http://www.vupen.com/english/advisories/2006/1190"}, {"name": "17347", "tags": ["vdb-entry", "x_refsource_BID"], "url": "http://www.securityfocus.com/bid/17347"}, {"name": "siteman-adminlogin-sql-injection(25595)", "tags": ["vdb-entry", "x_refsource_XF"], "url": "https://exchange.xforce.ibmcloud.com/vulnerabilities/25595"}, {"name": "20060401 SiteMan <= All version SQL injection in admin_login.asp", "tags": ["mailing-list", "x_refsource_BUGTRAQ"], "url": "http://www.securityfocus.com/archive/1/429607/100/0/threaded"}], "x_legacyV4Record": {"CVE_data_meta": {"ASSIGNER": "cve@mitre.org", "ID": "CVE-2006-1586", "STATE": "PUBLIC"}, "affects": {"vendor": {"vendor_data": [{"product": {"product_data": [{"product_name": "n/a", "version": {"version_data": [{"version_value": "n/a"}]}}]}, "vendor_name": "n/a"}]}}, "data_format": "MITRE", "data_type": "CVE", "data_version": "4.0", "description": {"description_data": [{"lang": "eng", "value": "SQL injection vulnerability in admin_login.asp in ISP of Egypt SiteMan allows remote attackers to execute arbitrary SQL commands via the pass parameter."}]}, "problemtype": {"problemtype_data": [{"description": [{"lang": "eng", "value": "n/a"}]}]}, "references": {"reference_data": [{"name": "24362", "refsource": "OSVDB", "url": "http://www.osvdb.org/24362"}, {"name": "19500", "refsource": "SECUNIA", "url": "http://secunia.com/advisories/19500"}, {"name": "ADV-2006-1190", "refsource": "VUPEN", "url": "http://www.vupen.com/english/advisories/2006/1190"}, {"name": "17347", "refsource": "BID", "url": "http://www.securityfocus.com/bid/17347"}, {"name": "siteman-adminlogin-sql-injection(25595)", "refsource": "XF", "url": "https://exchange.xforce.ibmcloud.com/vulnerabilities/25595"}, {"name": "20060401 SiteMan <= All version SQL injection in admin_login.asp", "refsource": "BUGTRAQ", "url": "http://www.securityfocus.com/archive/1/429607/100/0/threaded"}]}}}}, "cveMetadata": {"assignerOrgId": "8254265b-2729-46b6-b9e3-3dfca2d5bfca", "assignerShortName": "mitre", "cveId": "CVE-2006-1586", "datePublished": "2006-04-02T21:00:00", "dateReserved": "2006-04-02T00:00:00", "dateUpdated": "2018-10-18T14:57:01", "state": "PUBLISHED"}, "dataType": "CVE_RECORD", "dataVersion": "5.0"}