CVE-2006-5892 - Hypnotised Fennec Fox

Description

SQL injection vulnerability in MoreInfo.asp in The Net Guys ASPired2Poll 1.0 and earlier allows remote attackers to execute arbitrary SQL commands via the id parameter.

Reference

http://www.securityfocus.com/bid/20987 http://secunia.com/advisories/22796 http://www.vupen.com/english/advisories/2006/4428 https://exchange.xforce.ibmcloud.com/vulnerabilities/30160 https://www.exploit-db.com/exploits/2746 http://www.securityfocus.com/archive/1/451320/100/0/threaded