CVE-2006-6540

Опубликовано: 14 дек. 2006

Источник: nvd

CVSS2: 6.8

EPSS Низкий

Описание

SQL injection vulnerability in bt-trackback.php in Bluetrait before 1.2.0, when trackback is enabled, allows remote attackers to execute arbitrary SQL commands via unspecified parameters. NOTE: some of these details are obtained from third party information.

Ссылки

Уязвимые конфигурации

Конфигурация 1

Одно из

cpe:2.3:a:bluetrait:bluetrait:*:*:*:*:*:*:*:*

Версия до 1.1.1 (включая)

cpe:2.3:a:bluetrait:bluetrait:0.3.2:*:*:*:*:*:*:*

cpe:2.3:a:bluetrait:bluetrait:0.3.3:*:*:*:*:*:*:*

cpe:2.3:a:bluetrait:bluetrait:0.3.5:*:*:*:*:*:*:*

cpe:2.3:a:bluetrait:bluetrait:0.3.6:*:*:*:*:*:*:*

cpe:2.3:a:bluetrait:bluetrait:0.3.7:*:*:*:*:*:*:*

cpe:2.3:a:bluetrait:bluetrait:0.3.8:*:*:*:*:*:*:*

cpe:2.3:a:bluetrait:bluetrait:0.3.9:*:*:*:*:*:*:*

cpe:2.3:a:bluetrait:bluetrait:0.3.10:*:*:*:*:*:*:*

cpe:2.3:a:bluetrait:bluetrait:0.4:*:*:*:*:*:*:*

cpe:2.3:a:bluetrait:bluetrait:0.4.1:*:*:*:*:*:*:*

cpe:2.3:a:bluetrait:bluetrait:0.4.2:*:*:*:*:*:*:*

cpe:2.3:a:bluetrait:bluetrait:0.4.3:*:*:*:*:*:*:*

cpe:2.3:a:bluetrait:bluetrait:0.4.4:*:*:*:*:*:*:*

cpe:2.3:a:bluetrait:bluetrait:0.4.5:*:*:*:*:*:*:*

cpe:2.3:a:bluetrait:bluetrait:0.4.6:*:*:*:*:*:*:*

cpe:2.3:a:bluetrait:bluetrait:0.4.7:*:*:*:*:*:*:*

cpe:2.3:a:bluetrait:bluetrait:0.4.8_beta1:*:*:*:*:*:*:*

cpe:2.3:a:bluetrait:bluetrait:0.4.9:*:*:*:*:*:*:*

cpe:2.3:a:bluetrait:bluetrait:0.4.10:*:*:*:*:*:*:*

cpe:2.3:a:bluetrait:bluetrait:0.5.1:*:*:*:*:*:*:*

cpe:2.3:a:bluetrait:bluetrait:0.5.2:*:*:*:*:*:*:*

cpe:2.3:a:bluetrait:bluetrait:0.5.3:*:*:*:*:*:*:*

cpe:2.3:a:bluetrait:bluetrait:0.5_beta2:*:*:*:*:*:*:*

cpe:2.3:a:bluetrait:bluetrait:1.0.0:*:*:*:*:*:*:*

cpe:2.3:a:bluetrait:bluetrait:1.1.0:*:*:*:*:*:*:*

EPSS

Процентиль: 68%

0.00581

Низкий

6.8 Medium

CVSS2

Дефекты

NVD-CWE-Other

Связанные уязвимости

GHSA-5fgj-5rwg-9qgp

github

почти 4 года назад