|
|
CVE Reference: CVE-2006-2046 |
|
| NOTE: The text on this page is written by CVE MITRE and reflects neither the opinions of Secunia or the results of our research. All data on this page is written and maintained by CVE MITRE. | |
|
Original Page at CVE MITRE: CVE-2006-2046 |
|
|
Description: Multiple SQL injection vulnerabilities in Application Dynamics Cartweaver ColdFusion 2.16.11 and earlier allow remote attackers to execute arbitrary SQL commands via the (1) category and (2) keywords parameters in (a) Results.cfm, and the (3) ProdID parameter in (b) Details.cfm. |
|
|
CVE Status: Candidate |
|
|
References: XF http://xforce.iss.net/xforce/xfdb/26060 SAID Secunia Advisory: SA19812 OSVDB 24961 24962 MISC http://pridels.blogspot.com/2006/04/cartweaver-coldfusion-vuln.html MILW0RM http://www.milw0rm.com/exploits/4264 CONFIRM http://www.techfeed.net/blog/index.cfm/2006/4/26/cartweaver-holes BID 17941 25210 |
|
| Return to the previous page. |
