Unrated severityNVD Advisory· Published Sep 19, 2006· Updated Apr 16, 2026
CVE-2006-4852
CVE-2006-4852
Description
SQL injection vulnerability in browse.asp in QuadComm Q-Shop 3.5 allows remote attackers to execute arbitrary SQL commands via the OrderBy parameter.
Affected products
1Patches
0No patches discovered yet.
Vulnerability mechanics
AI mechanics synthesis has not run for this CVE yet.
References
8- secunia.com/advisories/21929nvdExploitVendor Advisory
- www.securityfocus.com/bid/20075nvdExploit
- securityreason.com/securityalert/1589nvd
- www.osvdb.org/28917nvd
- www.securityfocus.com/archive/1/446231/100/0/threadednvd
- www.vupen.com/english/advisories/2006/3665nvd
- exchange.xforce.ibmcloud.com/vulnerabilities/28970nvd
- www.exploit-db.com/exploits/2384nvd
News mentions
0No linked articles in our index yet.