Lucene search

K
cve[email protected]CVE-2006-1006
HistoryMar 06, 2006 - 8:06 p.m.

CVE-2006-1006

2006-03-0620:06:00
CWE-89
web.nvd.nist.gov
20
cve
2006
1006
sql injection
sendcard.php
remote attackers
nvd

8.6 High

AI Score

Confidence

Low

7.5 High

CVSS2

Access Vector

Access Complexity

Authentication

NONE

Confidentiality Impact

PARTIAL

Integrity Impact

PARTIAL

Availability Impact

PARTIAL

AV:N/AC:L/Au:N/C:P/I:P/A:P

0.004 Low

EPSS

Percentile

72.1%

Multiple SQL injection vulnerabilities in sendcard.php in sendcard before 3.3.0 allow remote attackers to execute arbitrary SQL commands via unspecified parameters.

Affected configurations

NVD
Node
sendcardsendcardRange3.2.3
OR
sendcardsendcardMatch1.00
OR
sendcardsendcardMatch1.01
OR
sendcardsendcardMatch1.02
OR
sendcardsendcardMatch1.10
OR
sendcardsendcardMatch1.20
OR
sendcardsendcardMatch2.00
OR
sendcardsendcardMatch2.01
OR
sendcardsendcardMatch3.0.0
OR
sendcardsendcardMatch3.0.1
OR
sendcardsendcardMatch3.0.2
OR
sendcardsendcardMatch3.0.3
OR
sendcardsendcardMatch3.0.4
OR
sendcardsendcardMatch3.0.5
OR
sendcardsendcardMatch3.0.5pl1
OR
sendcardsendcardMatch3.0.5pl2
OR
sendcardsendcardMatch3.1.0
OR
sendcardsendcardMatch3.1.1
OR
sendcardsendcardMatch3.1.2
OR
sendcardsendcardMatch3.2
OR
sendcardsendcardMatch3.2.0rc1
OR
sendcardsendcardMatch3.2.0rc2
OR
sendcardsendcardMatch3.2.0rc3
OR
sendcardsendcardMatch3.2.1
OR
sendcardsendcardMatch3.2.2

8.6 High

AI Score

Confidence

Low

7.5 High

CVSS2

Access Vector

Access Complexity

Authentication

NONE

Confidentiality Impact

PARTIAL

Integrity Impact

PARTIAL

Availability Impact

PARTIAL

AV:N/AC:L/Au:N/C:P/I:P/A:P

0.004 Low

EPSS

Percentile

72.1%

Related for CVE-2006-1006