Unrated severityNVD Advisory· Published May 4, 2006· Updated Apr 16, 2026

CVE-2006-2179

Description

Multiple SQL injection vulnerabilities in CyberBuild allow remote attackers to execute arbitrary SQL commands via the (1) SessionID parameter to login.asp or (2) ProductIndex parameter to browse0.htm.

Affected products

Smartwin Technology/Cyberoffice Warehouse Builder
cpe:2.3:a:smartwin_technology:cyberoffice_warehouse_builder:*:*:*:*:*:*:*:*

Patches

No patches discovered yet.

Vulnerability mechanics

AI mechanics synthesis has not run for this CVE yet.

References

secunia.com/advisories/19889nvdExploitVendor Advisory
pridels0.blogspot.com/2006/05/cyberbuild-vuln.htmlnvd
www.osvdb.org/25195nvd
www.osvdb.org/25196nvd
www.securityfocus.com/bid/17829nvd
www.vupen.com/english/advisories/2006/1630nvd
exchange.xforce.ibmcloud.com/vulnerabilities/26201nvd

News mentions

No linked articles in our index yet.

cvss	0.000
epss	0.001
exploit	0.030
kev	0.000
patch	0.000
ransomware	0.000