Lucene search

[email protected]CVE-2006-0809

HistoryFeb 21, 2006 - 2:02 a.m.

CVE-2006-0809

2006-02-2102:02:00

NVD-CWE-Other

[email protected]

web.nvd.nist.gov

cve-2006-0809

skate board 0.9

sql injection

remote attackers

nvd

8.8 High

AI Score

Confidence

Low

7.5 High

CVSS2

Access Vector

NETWORK

Access Complexity

LOW

Authentication

NONE

Confidentiality Impact

PARTIAL

Integrity Impact

PARTIAL

Availability Impact

PARTIAL

AV:N/AC:L/Au:N/C:P/I:P/A:P

0.006 Low

EPSS

Percentile

79.2%

JSON

Multiple SQL injection vulnerabilities in Skate Board 0.9 allow remote attackers to execute arbitrary SQL commands via the (1) usern parameter in (a) sendpass.php, and the (2) usern and (3) passwd parameters and (4) sf_cookie cookie in (b) login.php and © logged.php.

CPENameOperatorVersion
skate_board:skate_boardskate boardeq0.9

CPE	Name	Operator	Version
skate_board:skate_board	skate board	eq	0.9

References

evuln.com/vulns/84/summary.html

secunia.com/advisories/18978

securityreason.com/securityalert/540

www.osvdb.org/23301

www.osvdb.org/23302

www.osvdb.org/23303

www.securityfocus.com/archive/1/426658/30/0/threaded

www.securityfocus.com/bid/16936

exchange.xforce.ibmcloud.com/vulnerabilities/24778

exchange.xforce.ibmcloud.com/vulnerabilities/24779

8.8 High

AI Score

Confidence

Low

7.5 High

CVSS2

Access Vector

NETWORK

Access Complexity

LOW

Authentication

NONE

Confidentiality Impact

PARTIAL

Integrity Impact

PARTIAL

Availability Impact

PARTIAL

AV:N/AC:L/Au:N/C:P/I:P/A:P

0.006 Low

EPSS

Percentile

79.2%

JSON

Related for CVE-2006-0809

prion1 securityvulns1 packetstorm1