exploitDog

CVE-2006-3827

Опубликовано: 25 июл. 2006

Источник: nvd

CVSS2: 6.5

EPSS Низкий

Описание

SQL injection vulnerability in bmc/Inc/core/admin/search.inc.php in Kailash Nadh boastMachine (formerly bMachine) 3.1 and earlier allows remote authenticated administrators to execute arbitrary SQL commands via the blog parameter.

Ссылки

Уязвимые конфигурации

Конфигурация 1

Одно из

cpe:2.3:a:kailash_nadh:boastmachine:2.5:*:*:*:*:*:*:*

cpe:2.3:a:kailash_nadh:boastmachine:2.7:*:*:*:*:*:*:*

cpe:2.3:a:kailash_nadh:boastmachine:2.8:*:*:*:*:*:*:*

cpe:2.3:a:kailash_nadh:boastmachine:2.9b:*:*:*:*:*:*:*

cpe:2.3:a:kailash_nadh:boastmachine:3.1:*:*:*:*:*:*:*

EPSS

Процентиль: 74%

0.0082

Низкий

6.5 Medium

CVSS2

Дефекты

NVD-CWE-Other

Связанные уязвимости

GHSA-mhhp-6648-ff94

github

почти 4 года назад

SQL injection vulnerability in bmc/Inc/core/admin/search.inc.php in Kailash Nadh boastMachine (formerly bMachine) 3.1 and earlier allows remote authenticated administrators to execute arbitrary SQL commands via the blog parameter.

EPSS

Процентиль: 74%

0.0082

Низкий

6.5 Medium

CVSS2

Дефекты

NVD-CWE-Other