CVE-2006-3688

Опубликовано: 21 июл. 2006

Источник: nvd

CVSS2: 7.5

EPSS Низкий

Описание

SQL injection vulnerability in Room.php in Francisco Charrua Photo-Gallery 1.0 allows remote attackers to execute arbitrary SQL commands via the id parameter.

Ссылки

http://secunia.com/advisories/21084
Vendor Advisory
http://securitytracker.com/id?1016505
http://www.securityfocus.com/archive/1/440124/100/100/threaded
http://www.securityfocus.com/bid/19020
http://www.vupen.com/english/advisories/2006/2834
Vendor Advisory
http://secunia.com/advisories/21084
Vendor Advisory
http://securitytracker.com/id?1016505
http://www.securityfocus.com/archive/1/440124/100/100/threaded
http://www.securityfocus.com/bid/19020
http://www.vupen.com/english/advisories/2006/2834
Vendor Advisory

Уязвимые конфигурации

Конфигурация 1

cpe:2.3:a:francisco_charrua:photo-gallery:1.0:*:*:*:*:*:*:*

EPSS

Процентиль: 68%

0.00596

Низкий

7.5 High

CVSS2

Дефекты

CWE-89

Связанные уязвимости

GHSA-23xv-rh65-95rq

github

больше 3 лет назад