Unrated severityNVD Advisory· Published May 22, 2006· Updated Apr 16, 2026

CVE-2006-2504

Description

Multiple SQL injection vulnerabilities in mono AZBOARD 1.0 and earlier allow remote attackers to execute arbitrary SQL commands via the (1) search and (2) cate parameters to (a) list.asp, and the (3) id and cate parameters to (b) admin_ok.asp.

Affected products

Azboard/Azboard
cpe:2.3:a:azboard:azboard:*:*:*:*:*:*:*:*
Range: <=1.0

Patches

No patches discovered yet.

Vulnerability mechanics

AI mechanics synthesis has not run for this CVE yet.

References

user.chol.com/~jyj9782/sec/azboard_advisory.txtnvdExploit
secunia.com/advisories/20112nvd
securityreason.com/securityalert/928nvd
www.osvdb.org/25527nvd
www.osvdb.org/25528nvd
www.securityfocus.com/archive/1/434010/100/0/threadednvd
www.securityfocus.com/bid/17990nvd
www.vupen.com/english/advisories/2006/1827nvd
exchange.xforce.ibmcloud.com/vulnerabilities/26495nvd

News mentions

No linked articles in our index yet.

cvss	0.000
epss	0.002
exploit	0.000
kev	0.000
patch	0.000
ransomware	0.000