CVE-2006-1708

Опубликовано: 11 апр. 2006

Источник: nvd

CVSS2: 7.5

EPSS Низкий

Описание

SQL injection vulnerability in member.php in Clansys 1.1 allows remote attackers to execute arbitrary SQL commands via the showid parameter in the member page to index.php.

Ссылки

http://secunia.com/advisories/19609
Vendor Advisory
http://securitytracker.com/id?1015935
http://www.securityfocus.com/bid/17456
http://www.vupen.com/english/advisories/2006/1295
https://exchange.xforce.ibmcloud.com/vulnerabilities/25746
https://www.exploit-db.com/exploits/1662
http://secunia.com/advisories/19609
Vendor Advisory
http://securitytracker.com/id?1015935
http://www.securityfocus.com/bid/17456
http://www.vupen.com/english/advisories/2006/1295
https://exchange.xforce.ibmcloud.com/vulnerabilities/25746
https://www.exploit-db.com/exploits/1662

Уязвимые конфигурации

Конфигурация 1

cpe:2.3:a:clansys:clansys:1.1:*:*:*:*:*:*:*

EPSS

Процентиль: 85%

0.02446

Низкий

7.5 High

CVSS2

Дефекты

NVD-CWE-Other

Связанные уязвимости

GHSA-ccg8-6f76-f7rw

github

почти 4 года назад