CVE-2006-5217
published 2006-10-10CVE-2006-5217: SQL injection vulnerability in giris_yap.asp in Emek Portal 2.1 allows remote attackers to execute arbitrary SQL commands by simultaneously injecting into the…
PriorityP339high7.5CVSS 2.0
AVNACLAuNCPIPAP
EXPLOIT
EPSS
1.04%
59.8th percentile
SQL injection vulnerability in giris_yap.asp in Emek Portal 2.1 allows remote attackers to execute arbitrary SQL commands by simultaneously injecting into the user name and pass fields in uyegiris.asp, also known as the Kullanici Adi (k_a) and Sifre (sifre) parameters.
Affected
1 ranges
| Vendor | Product | Version range | Fixed in |
|---|---|---|---|
| emek_portal | emek_portal | — | — |
CVEs like this are exactly what “Exploited This Week” covers.
Every Monday: what got weaponized or added to CISA KEV in the last seven days — each CVE cross-linked to its PoC, Nuclei template, and detection rule. Free, one email a week, unsubscribe in one click.
VulDB
Emek Portal 2.1 giris_yap.asp sql injection (EDB-28768 / XFDB-29380)
vuldb·2026-04-24·CVSS 7.5
CVE-2006-5217 [HIGH] Emek Portal 2.1 giris_yap.asp sql injection (EDB-28768 / XFDB-29380)
A vulnerability was found in Emek Portal 2.1. It has been rated as critical. Affected is an unknown function of the file giris_yap.asp. The manipulation leads to sql injection.
This vulnerability is traded as CVE-2006-5217. It is possible to initiate the attack remotely. Furthermore, there is an exploit available.
GHSA
GHSA-7cmw-qj66-jhjp: SQL injection vulnerability in giris_yap
ghsa_unreviewed·2022-05-01
CVE-2006-5217 [HIGH] GHSA-7cmw-qj66-jhjp: SQL injection vulnerability in giris_yap
SQL injection vulnerability in giris_yap.asp in Emek Portal 2.1 allows remote attackers to execute arbitrary SQL commands by simultaneously injecting into the user name and pass fields in uyegiris.asp, also known as the Kullanici Adi (k_a) and Sifre (sifre) parameters.
No detection rules found.
No writeups or analysis indexed.
http://securityreason.com/securityalert/1700http://www.securityfocus.com/archive/1/447914/100/0/threadedhttp://www.securityfocus.com/bid/20378https://exchange.xforce.ibmcloud.com/vulnerabilities/29380http://securityreason.com/securityalert/1700http://www.securityfocus.com/archive/1/447914/100/0/threadedhttp://www.securityfocus.com/bid/20378https://exchange.xforce.ibmcloud.com/vulnerabilities/29380
2006-10-10
Published