CVE-2006-2268

NONECVSS 0.0

0.0

SQL injection vulnerability in FlexCustomer 0.0.4 and earlier allows remote attackers to bypass authentication and execute arbitrary SQL commands via the admin and ordinary user interface, probably involving the (1) checkuser and (2) checkpass parameters to (a) admin/index.php, and (3) username and (4) password parameters to (b) index.php. NOTE: it was later reported that 0.0.6 is also affected.

🔗 References (20)

cve@mitrehttp://secunia.com/advisories/20016
cve@mitrehttp://securityreason.com/securityalert/858
cve@mitrehttp://www.osvdb.org/25342
cve@mitrehttp://www.osvdb.org/25343
cve@mitrehttp://www.securityfocus.com/archive/1/433125/100/0/threaded
cve@mitrehttp://www.securityfocus.com/bid/17864
cve@mitrehttp://www.vupen.com/english/advisories/2006/1690
cve@mitrehttps://exchange.xforce.ibmcloud.com/vulnerabilities/26323
cve@mitrehttps://exchange.xforce.ibmcloud.com/vulnerabilities/47651
cve@mitrehttps://www.exploit-db.com/exploits/7622
af854a3a-2127-422b-91ae-364da2661108http://secunia.com/advisories/20016
af854a3a-2127-422b-91ae-364da2661108http://securityreason.com/securityalert/858
af854a3a-2127-422b-91ae-364da2661108http://www.osvdb.org/25342
af854a3a-2127-422b-91ae-364da2661108http://www.osvdb.org/25343
af854a3a-2127-422b-91ae-364da2661108http://www.securityfocus.com/archive/1/433125/100/0/threaded

Is Your Infrastructure Affected by CVE-2006-2268?

EchelonGraph automatically scans your cloud infrastructure and maps CVE exposure using blast radius analysis.

Start Free Scan →Browse All CVEs

CVE-2006-2268

📅 Published

🔄 Last Modified

🔗 References (20)

Dependency Blast Radius

Is Your Infrastructure Affected by CVE-2006-2268?