VYPR
Unrated severityNVD Advisory· Published Nov 21, 2006· Updated Jun 16, 2026

CVE-2006-5991

CVE-2006-5991

Description

Multiple SQL injection vulnerabilities in wwweb concepts CactuShop allow remote attackers to execute arbitrary SQL commands via the (1) prodtype parameter in prodtype.asp and the (2) product parameter in product.asp.

Affected products

2

Patches

Vulnerability mechanics

References

7

News mentions

0

No linked articles in our index yet.