CVE-2006-6021
published 2006-11-21CVE-2006-6021: SQL injection vulnerability in the login component in BestWebApp Dating Site allows remote attackers to execute arbitrary SQL commands via the (1) username and…
PriorityP342high7.5CVSS 2.0
AVNACLAuNCPIPAP
EXPLOIT
EPSS
1.21%
64.7th percentile
SQL injection vulnerability in the login component in BestWebApp Dating Site allows remote attackers to execute arbitrary SQL commands via the (1) username and (2) passwd parameters.
CVEs like this are exactly what “Exploited This Week” covers.
Every Monday: what got weaponized or added to CISA KEV in the last seven days — each CVE cross-linked to its PoC, Nuclei template, and detection rule. Free, one email a week, unsubscribe in one click.
VulDB
BestWebApp Dating Site sql injection (EDB-29080 / XFDB-30394)
vuldb·2026-04-28·CVSS 7.5
CVE-2006-6021 [HIGH] BestWebApp Dating Site sql injection (EDB-29080 / XFDB-30394)
A vulnerability marked as critical has been reported in BestWebApp Dating Site. The impacted element is an unknown function. The manipulation leads to sql injection.
This vulnerability is traded as CVE-2006-6021. It is possible to initiate the attack remotely. Furthermore, there is an exploit available.
GHSA
GHSA-fwxm-3269-x8gj: SQL injection vulnerability in the login component in BestWebApp Dating Site allows remote attackers to execute arbitrary SQL commands via the (1) use
ghsa_unreviewed·2022-05-01
CVE-2006-6021 [HIGH] GHSA-fwxm-3269-x8gj: SQL injection vulnerability in the login component in BestWebApp Dating Site allows remote attackers to execute arbitrary SQL commands via the (1) use
SQL injection vulnerability in the login component in BestWebApp Dating Site allows remote attackers to execute arbitrary SQL commands via the (1) username and (2) passwd parameters.
GHSA
GHSA-p7jf-cxwm-vrwv: SQL injection vulnerability in login_form
ghsa_unreviewed·2022-05-01·CVSS 7.5
CVE-2007-6671 [HIGH] CWE-89 GHSA-p7jf-cxwm-vrwv: SQL injection vulnerability in login_form
SQL injection vulnerability in login_form.asp in Instant Softwares Dating Site allows remote attackers to execute arbitrary SQL commands via the Password parameter, a different product than CVE-2006-6021. NOTE: some of these details are obtained from third party information.
No detection rules found.
No writeups or analysis indexed.
http://secunia.com/advisories/23017http://securityreason.com/securityalert/1898http://www.securityfocus.com/archive/1/451963/100/0/threadedhttp://www.securityfocus.com/archive/1/488647/100/100/threadedhttp://www.securityfocus.com/bid/21158https://exchange.xforce.ibmcloud.com/vulnerabilities/30394http://secunia.com/advisories/23017http://securityreason.com/securityalert/1898http://www.securityfocus.com/archive/1/451963/100/0/threadedhttp://www.securityfocus.com/archive/1/488647/100/100/threadedhttp://www.securityfocus.com/bid/21158https://exchange.xforce.ibmcloud.com/vulnerabilities/30394
2006-11-21
Published