CVE-2006-0624

Опубликовано: 09 фев. 2006

Источник: nvd

CVSS2: 7.5

EPSS Низкий

Описание

SQL injection vulnerability in check.asp in Whomp Real Estate Manager XP 2005 allows remote attackers to execute arbitrary SQL commands via the (1) username and (2) password parameters.

Ссылки

http://secunia.com/advisories/18780
http://securityreason.com/securityalert/418
http://www.osvdb.org/22969
http://www.securityfocus.com/archive/1/424389/100/0/threaded
http://www.securityfocus.com/bid/16544
Exploit
http://www.vupen.com/english/advisories/2006/0489
https://exchange.xforce.ibmcloud.com/vulnerabilities/24592
http://secunia.com/advisories/18780
http://securityreason.com/securityalert/418
http://www.osvdb.org/22969
http://www.securityfocus.com/archive/1/424389/100/0/threaded
http://www.securityfocus.com/bid/16544
Exploit
http://www.vupen.com/english/advisories/2006/0489
https://exchange.xforce.ibmcloud.com/vulnerabilities/24592

Уязвимые конфигурации

Конфигурация 1

cpe:2.3:a:webeveyn:whomp_real_estate_manager_xp_2005:*:*:*:*:*:*:*:*

EPSS

Процентиль: 82%

0.0173

Низкий

7.5 High

CVSS2

Дефекты

NVD-CWE-Other

Связанные уязвимости

GHSA-wrj2-9wxm-q38p

github

почти 4 года назад