Lucene search

[email protected]CVE-2006-0402

HistoryJan 25, 2006 - 2:03 a.m.

CVE-2006-0402

2006-01-2502:03:00

NVD-CWE-Other

[email protected]

web.nvd.nist.gov

cve-2006-0402

sql injection

zoph

vulnerability

remote attackers

arbitrary commands

8.1 High

AI Score

Confidence

Low

7.5 High

CVSS2

Access Vector

NETWORK

Access Complexity

LOW

Authentication

NONE

Confidentiality Impact

PARTIAL

Integrity Impact

PARTIAL

Availability Impact

PARTIAL

AV:N/AC:L/Au:N/C:P/I:P/A:P

0.009 Low

EPSS

Percentile

82.8%

JSON

SQL injection vulnerability in Zoph before 0.5pre1 allows remote attackers to execute arbitrary SQL commands.

CPENameOperatorVersion
jason_geiger:zophjason geiger zopheq0.4
jason_geiger:zophjason geiger zopheq0.3.3

CPE	Name	Operator	Version
jason_geiger:zoph	jason geiger zoph	eq	0.4
jason_geiger:zoph	jason geiger zoph	eq	0.3.3

References

secunia.com/advisories/18563

secunia.com/advisories/19153

sourceforge.net/project/shownotes.php?group_id=69353&release_id=387320

www.debian.org/security/2006/dsa-989

www.osvdb.org/22743

www.securityfocus.com/bid/16347

www.vupen.com/english/advisories/2006/0297

exchange.xforce.ibmcloud.com/vulnerabilities/24264

8.1 High

AI Score

Confidence

Low

7.5 High

CVSS2

Access Vector

NETWORK

Access Complexity

LOW

Authentication

NONE

Confidentiality Impact

PARTIAL

Integrity Impact

PARTIAL

Availability Impact

PARTIAL

AV:N/AC:L/Au:N/C:P/I:P/A:P

0.009 Low

EPSS

Percentile

82.8%

JSON

Related for CVE-2006-0402

nessus1 openvas2 debian2 debiancve1 securityvulns1 prion1 ubuntucve1