Lucene search

[email protected]CVE-2006-0624

HistoryFeb 09, 2006 - 2:02 a.m.

CVE-2006-0624

2006-02-0902:02:00

[email protected]

web.nvd.nist.gov

cve-2006-0624

sql injection

whomp real estate manager xp 2005

check.asp

security vulnerability

7.5 High

CVSS2

Attack Vector

NETWORK

Attack Complexity

LOW

Authentication

NONE

Confidentiality Impact

PARTIAL

Integrity Impact

PARTIAL

Availability Impact

PARTIAL

AV:N/AC:L/Au:N/C:P/I:P/A:P

8.6 High

AI Score

Confidence

Low

0.004 Low

EPSS

Percentile

74.3%

JSON

SQL injection vulnerability in check.asp in Whomp Real Estate Manager XP 2005 allows remote attackers to execute arbitrary SQL commands via the (1) username and (2) password parameters.

Affected configurations

NVD

Node

webeveynwhomp_real_estate_manager_xp_2005

CPENameOperatorVersion
webeveyn:whomp_real_estate_manager_xp_2005webeveyn whomp real estate manager xp 2005eq*

CPE	Name	Operator	Version
webeveyn:whomp_real_estate_manager_xp_2005	webeveyn whomp real estate manager xp 2005	eq	*

References

secunia.com/advisories/18780

securityreason.com/securityalert/418

www.osvdb.org/22969

www.securityfocus.com/archive/1/424389/100/0/threaded

www.securityfocus.com/bid/16544

www.vupen.com/english/advisories/2006/0489

exchange.xforce.ibmcloud.com/vulnerabilities/24592

7.5 High

CVSS2

Attack Vector

NETWORK

Attack Complexity

LOW

Authentication

NONE

Confidentiality Impact

PARTIAL

Integrity Impact

PARTIAL

Availability Impact

PARTIAL

AV:N/AC:L/Au:N/C:P/I:P/A:P

8.6 High

AI Score

Confidence

Low

0.004 Low

EPSS

Percentile

74.3%

JSON

Related for CVE-2006-0624

cvelist1 prion1 nvd1