PT-2006-6336 · Unisor · Unisor Content Management System

Fireboy

Published

2006-10-31

Updated

2018-10-17

CVE-2006-5628

CVSS v2.0

7.5

High

Vector

AV:N/AC:L/Au:N/C:P/I:P/A:P

Name of the Vulnerable Software and Affected Versions: UNISOR Content Management System (CMS) (affected versions not specified)

Description: The issue allows remote attackers to execute arbitrary SQL commands via the user or pass fields in the login.asp file. This can potentially lead to unauthorized access and data manipulation.

Recommendations: At the moment, there is no information about a newer version that contains a fix for this vulnerability.

Found an issue in the description? Have something to add? Feel free to write us 👾

dbugs@ptsecurity.com

Related Identifiers

CVE-2006-5628

Affected Products

Unisor Content Management System

PT-2006-6336 · Unisor · Unisor Content Management System

CVE-2006-5628

Related Identifiers

Affected Products

References · 5