Unrated severityNVD Advisory· Published Nov 22, 2006· Updated Jun 16, 2026
CVE-2006-6067
CVE-2006-6067
Description
Multiple SQL injection vulnerabilities in 20/20 DataShed (aka Real Estate Listing System) allow remote attackers to execute arbitrary SQL commands via the (1) itemID parameter to (a) f-email.asp, or the (2) peopleID and (2) sort_order parameters to (b) listings.asp, different vectors than CVE-2006-5955.
AI Insight
LLM-synthesized narrative grounded in this CVE's description and references.
Affected products
2- cpe:2.3:a:20_20_applications:20_20_datashed:1.0:*:*:*:*:*:*:*
Patches
Vulnerability mechanics
References
4- s-a-p.ca/index.phpnvdExploitVendor AdvisoryURL Repurposed
- www.securityfocus.com/bid/21156nvdExploit
- www.securityfocus.com/archive/1/451962/100/0/threadednvd
- exchange.xforce.ibmcloud.com/vulnerabilities/30402nvd
News mentions
0No linked articles in our index yet.