Unrated severityNVD Advisory· Published Dec 31, 2006· Updated Apr 23, 2026

CVE-2006-6846

Description

Multiple SQL injection vulnerabilities in While You Were Out (WYWO) InOut Board 1.0 allow remote attackers to execute arbitrary SQL commands via (1) the num parameter in (a) phonemessage.asp, (2) the catcode parameter in (b) faqDsp.asp, and the (3) Username and (4) Password fields in (c) login.asp.

Affected products

Cybercoded/While You Were Out Inout Board
cpe:2.3:a:cybercoded:while_you_were_out_inout_board:1.0:*:*:*:*:*:*:*

Patches

No patches discovered yet.

Vulnerability mechanics

AI mechanics synthesis has not run for this CVE yet.

References

www.securityfocus.com/bid/21803nvdExploit
secunia.com/advisories/23571nvd
exchange.xforce.ibmcloud.com/vulnerabilities/31128nvd
www.exploit-db.com/exploits/3032nvd

News mentions

No linked articles in our index yet.

cvss	0.000
epss	0.001
exploit	0.030
kev	0.000
patch	0.000
ransomware	0.000