Unrated severityNVD Advisory· Published Mar 30, 2006· Updated Apr 16, 2026

CVE-2006-1541

Description

SQL injection vulnerability in Default.asp in EzASPSite 2.0 RC3 and earlier allows remote attackers to execute arbitrary SQL commands and obtain the SHA1 hash of the admin password via the Scheme parameter.

Affected products

Ezaspsite/Ezaspsite
cpe:2.3:a:ezaspsite:ezaspsite:*:*:*:*:*:*:*:*
Range: <=2.0_rc3

Patches

No patches discovered yet.

Vulnerability mechanics

AI mechanics synthesis has not run for this CVE yet.

References

www.nukedx.comnvdExploit
marc.infonvd
secunia.com/advisories/19441nvd
www.osvdb.org/24256nvd
www.securityfocus.com/archive/1/429487/100/0/threadednvd
www.securityfocus.com/bid/17309nvd
www.vupen.com/english/advisories/2006/1164nvd
exchange.xforce.ibmcloud.com/vulnerabilities/25544nvd
www.exploit-db.com/exploits/1623nvd

News mentions

No linked articles in our index yet.

cvss	0.000
epss	0.001
exploit	0.000
kev	0.000
patch	0.000
ransomware	0.000