Unrated severityNVD Advisory· Published Nov 28, 2006· Updated Apr 23, 2026
CVE-2006-6152
CVE-2006-6152
Description
Multiple SQL injection vulnerabilities in vSpin.net Classified System 2004 allow remote attackers to execute arbitrary SQL commands via the (1) cat parameter to (a) cat.asp, or the (2) keyword, (3) order, (4) sort, (5) menuSelect, or (6) state parameter to (b) search.asp.
Affected products
1- cpe:2.3:a:vspin.net:classified_system:2004:*:*:*:*:*:*:*
Patches
0No patches discovered yet.
Vulnerability mechanics
AI mechanics synthesis has not run for this CVE yet.
References
7News mentions
0No linked articles in our index yet.