VYPR
Unrated severityNVD Advisory· Published Nov 26, 2006· Updated Jun 16, 2026

CVE-2006-6111

CVE-2006-6111

Description

Multiple SQL injection vulnerabilities in Alan Ward A-Cart Pro 2.0 allow remote attackers to execute arbitrary SQL commands via the (1) productid parameter in product.asp or (2) search parameter in search.asp. NOTE: the category.asp vector is already covered by CVE-2004-1873.

AI Insight

LLM-synthesized narrative grounded in this CVE's description and references.

Affected products

3
  • Metalinks/A Cart3 versions
    cpe:2.3:a:alan_ward:a-cart:2.0:*:*:*:*:*:*:*+ 2 more
    • cpe:2.3:a:alan_ward:a-cart:2.0:*:*:*:*:*:*:*
    • cpe:2.3:a:alan_ward:a-cart:2.0:*:pro:*:*:*:*:*
    • (no CPE)range: =2.0

Patches

Vulnerability mechanics

References

9

News mentions

0

No linked articles in our index yet.