mirror of
https://github.com/0xMarcio/cve.git
synced 2026-05-14 06:52:09 +02:00
0xMarcio
707 B
707 B
CVE-2006-3184
Description
Direct static code injection vulnerability in ASP Stats Generator before 2.1.2 allows remote authenticated attackers to execute arbitrary ASP code via the strAsgSknPageBgColour parameter to settings_skin.asp, which is stored in inc_skin_file.asp.
POC
Reference
Github
No PoCs found on GitHub currently.