exploitDog

CVE-2006-6398

Опубликовано: 08 дек. 2006

Источник: nvd

CVSS2: 7.5

EPSS Низкий

Описание

Multiple SQL injection vulnerabilities in Superfreaker Studios UPublisher 1.0 allow remote attackers to execute arbitrary SQL commands via unspecified vectors in (a) sendarticle.asp and (b) printarticle.asp, and the ID parameter to (c) index.asp and (d) preferences.asp, different vectors than CVE-2006-5888.

Ссылки

http://secunia.com/advisories/22840
Patch
Vendor Advisory
http://www.securityfocus.com/archive/1/453462/100/0/threaded
http://secunia.com/advisories/22840
Patch
Vendor Advisory
http://www.securityfocus.com/archive/1/453462/100/0/threaded

Уязвимые конфигурации

Конфигурация 1

cpe:2.3:a:superfreaker_studios:upublisher:1.0:*:*:*:*:*:*:*

EPSS

Процентиль: 62%

0.00431

Низкий

7.5 High

CVSS2

Дефекты

NVD-CWE-Other

Связанные уязвимости

GHSA-pjg8-mhcc-g856

github

почти 4 года назад

Multiple SQL injection vulnerabilities in Superfreaker Studios UPublisher 1.0 allow remote attackers to execute arbitrary SQL commands via unspecified vectors in (a) sendarticle.asp and (b) printarticle.asp, and the ID parameter to (c) index.asp and (d) preferences.asp, different vectors than CVE-2006-5888.

EPSS

Процентиль: 62%

0.00431

Низкий

7.5 High

CVSS2

Дефекты

NVD-CWE-Other