Описание
SQL injection vulnerability in default.asp (aka the login page) in ClickTech ClickBlog 2.0 allows remote attackers to execute arbitrary SQL commands via the (1) username and (2) form_codeword (aka the Password field) parameters.
SQL injection vulnerability in default.asp (aka the login page) in ClickTech ClickBlog 2.0 allows remote attackers to execute arbitrary SQL commands via the (1) username and (2) form_codeword (aka the Password field) parameters.
Ссылки
- https://nvd.nist.gov/vuln/detail/CVE-2006-4857
- https://exchange.xforce.ibmcloud.com/vulnerabilities/28964
- http://secunia.com/advisories/21980
- http://securityreason.com/securityalert/1599
- http://www.securityfocus.com/archive/1/446074/100/0/threaded
- http://www.securityfocus.com/bid/20033
- http://www.vupen.com/english/advisories/2006/3662
EPSS
Процентиль: 77%
0.01071
Низкий
CVE ID
Связанные уязвимости
nvd
больше 19 лет назад
SQL injection vulnerability in default.asp (aka the login page) in ClickTech ClickBlog 2.0 allows remote attackers to execute arbitrary SQL commands via the (1) username and (2) form_codeword (aka the Password field) parameters.
EPSS
Процентиль: 77%
0.01071
Низкий