Lucene search

[email protected]CVE-2006-0490

HistoryFeb 01, 2006 - 2:02 a.m.

CVE-2006-0490

2006-02-0102:02:00

NVD-CWE-Other

[email protected]

web.nvd.nist.gov

cve-2006-0490

sql injection

aspthai.net

aspthai forums 8.0

nvd

9.7 High

AI Score

Confidence

Low

7.5 High

CVSS2

Access Vector

NETWORK

Access Complexity

LOW

Authentication

NONE

Confidentiality Impact

PARTIAL

Integrity Impact

PARTIAL

Availability Impact

PARTIAL

AV:N/AC:L/Au:N/C:P/I:P/A:P

0.008 Low

EPSS

Percentile

81.3%

JSON

SQL injection vulnerability in login.asp in ASPThai.Net ASPThai Forums 8.0 and earlier allows remote attackers to execute arbitrary SQL commands and bypass login authentication via the password field.

CPENameOperatorVersion
aspthai.net:aspthai_forumsaspthai.net aspthai forumsle8.0

CPE	Name	Operator	Version
aspthai.net:aspthai_forums	aspthai.net aspthai forums	le	8.0

References

marc.info/?l=bugtraq&m=113837847503661&w=2

secunia.com/advisories/18636

securityreason.com/securityalert/381

securitytracker.com/id?1015548

www.osvdb.org/22790

www.securityfocus.com/bid/16404

www.vupen.com/english/advisories/2006/0372

exchange.xforce.ibmcloud.com/vulnerabilities/24359

9.7 High

AI Score

Confidence

Low

7.5 High

CVSS2

Access Vector

NETWORK

Access Complexity

LOW

Authentication

NONE

Confidentiality Impact

PARTIAL

Integrity Impact

PARTIAL

Availability Impact

PARTIAL

AV:N/AC:L/Au:N/C:P/I:P/A:P

0.008 Low

EPSS

Percentile

81.3%

JSON

Related for CVE-2006-0490

prion1