exploitDog

CVE-2006-6161

Опубликовано: 28 нояб. 2006

Источник: nvd

CVSS2: 7.5

EPSS Низкий

Описание

Multiple SQL injection vulnerabilities in Doug Luxem Liberum Help Desk 0.97.3 and earlier allow remote attackers to execute arbitrary SQL commands via the (1) id and (2) uid parameter to (a) inout/status.asp, (b) inout/update.asp, and (c) forgotpass.asp. NOTE: The provenance of this information is unknown; the details are obtained solely from third party information.

Ссылки

Уязвимые конфигурации

Конфигурация 1

cpe:2.3:a:doug_luxem:liberum_help_desk:*:*:*:*:*:*:*:*

Версия до 0.97.3 (включая)

EPSS

Процентиль: 73%

0.0078

Низкий

7.5 High

CVSS2

Дефекты

NVD-CWE-Other

Связанные уязвимости

GHSA-74vr-4r7f-r5qg

github

почти 4 года назад

Multiple SQL injection vulnerabilities in Doug Luxem Liberum Help Desk 0.97.3 and earlier allow remote attackers to execute arbitrary SQL commands via the (1) id and (2) uid parameter to (a) inout/status.asp, (b) inout/update.asp, and (c) forgotpass.asp. NOTE: The provenance of this information is unknown; the details are obtained solely from third party information.

EPSS

Процентиль: 73%

0.0078

Низкий

7.5 High

CVSS2

Дефекты

NVD-CWE-Other