Lucene search

K
cve[email protected]CVE-2006-0850
HistoryFeb 23, 2006 - 2:06 a.m.

CVE-2006-0850

2006-02-2302:06:00
web.nvd.nist.gov
19
cve-2006-0850
sql injection
ilchclan
remote attackers
arbitrary commands

8.1 High

AI Score

Confidence

Low

7.5 High

CVSS2

Access Vector

Access Complexity

Authentication

NONE

Confidentiality Impact

PARTIAL

Integrity Impact

PARTIAL

Availability Impact

PARTIAL

AV:N/AC:L/Au:N/C:P/I:P/A:P

0.006 Low

EPSS

Percentile

79.5%

SQL injection vulnerability in include/includes/user/login.php in ilchClan before 1.05g allows remote attackers to execute arbitrary SQL commands via the login_name parameter. NOTE: the provenance of this information is unknown; the details are obtained solely from third party information.

Affected configurations

NVD
Node
ilch.deilchclanMatch0.0.1
OR
ilch.deilchclanMatch1.0.0
OR
ilch.deilchclanMatch1.0.1
OR
ilch.deilchclanMatch1.0.2
OR
ilch.deilchclanMatch1.0.3
OR
ilch.deilchclanMatch1.0.4

8.1 High

AI Score

Confidence

Low

7.5 High

CVSS2

Access Vector

Access Complexity

Authentication

NONE

Confidentiality Impact

PARTIAL

Integrity Impact

PARTIAL

Availability Impact

PARTIAL

AV:N/AC:L/Au:N/C:P/I:P/A:P

0.006 Low

EPSS

Percentile

79.5%

Related for CVE-2006-0850