Unrated severityNVD Advisory· Published Nov 28, 2006· Updated Jun 16, 2026

CVE-2006-6161

Description

Multiple SQL injection vulnerabilities in Doug Luxem Liberum Help Desk 0.97.3 and earlier allow remote attackers to execute arbitrary SQL commands via the (1) id and (2) uid parameter to (a) inout/status.asp, (b) inout/update.asp, and (c) forgotpass.asp. NOTE: The provenance of this information is unknown; the details are obtained solely from third party information.

AI Insight

LLM-synthesized narrative grounded in this CVE's description and references.

Affected products

Doug Luxem/Help Desk2 versions
cpe:2.3:a:doug_luxem:liberum_help_desk:*:*:*:*:*:*:*:*+ 1 more
- cpe:2.3:a:doug_luxem:liberum_help_desk:*:*:*:*:*:*:*:*range: <=0.97.3
- (no CPE)range: <=0.97.3

Patches

Vulnerability mechanics

References

www.securityfocus.com/bid/32884nvd
www.vupen.com/english/advisories/2006/4704nvd
exchange.xforce.ibmcloud.com/vulnerabilities/47420nvd
www.exploit-db.com/exploits/7493nvd

News mentions

No linked articles in our index yet.

cvss	0.000
epss	0.001
exploit	0.000
kev	0.000
patch	0.000
ransomware	0.000