Lucene search
HistoryMar 06, 2006 - 9:02 p.m.
CVE-2006-1012
cve-2006-1012
sql injection
wordpress
security vulnerability
remote attack
7.5 High
CVSS2
Attack Vector
NETWORK
Attack Complexity
LOW
Authentication
NONE
Confidentiality Impact
PARTIAL
Integrity Impact
PARTIAL
Availability Impact
PARTIAL
AV:N/AC:L/Au:N/C:P/I:P/A:P
8.2 High
AI Score
Confidence
Low
0.006 Low
EPSS
Percentile
79.5%
SQL injection vulnerability in WordPress 1.5.2, and possibly other versions before 2.0, allows remote attackers to execute arbitrary SQL commands via the User-Agent field in an HTTP header for a comment.
Affected configurations
Node
wordpresswordpressMatch1.5.2
| CPE | Name | Operator | Version |
|---|---|---|---|
| wordpress:wordpress | wordpress | eq | 1.5.2 |
Related
openvas
openvas
Gentoo Security Advisory GLSA 200603-01 (WordPress)
2008-09-24 00:00:00
Gentoo Security Advisory GLSA 200603-01 (WordPress)
2008-09-24 00:00:00
ubuntucve
ubuntucve
CVE-2006-1012
2006-03-06 00:00:00
nessus
nessus
GLSA-200603-01 : WordPress: SQL injection vulnerability
2006-03-06 00:00:00
gentoo
gentoo
WordPress: SQL injection vulnerability
2006-03-04 00:00:00
debiancve
debiancve
CVE-2006-1012
2006-03-06 21:02:00
patchstack
patchstack
WordPress <= 1.5.2 - SQL injection
2006-03-06 00:00:00
cvelist
cvelist
CVE-2006-1012
2006-03-06 21:00:00
nvd
nvd
CVE-2006-1012
2006-03-06 21:02:00
prion
prion
Sql injection
2006-03-06 21:02:00
7.5 High
CVSS2
Attack Vector
NETWORK
Attack Complexity
LOW
Authentication
NONE
Confidentiality Impact
PARTIAL
Integrity Impact
PARTIAL
Availability Impact
PARTIAL
AV:N/AC:L/Au:N/C:P/I:P/A:P
8.2 High
AI Score
Confidence
Low
0.006 Low
EPSS
Percentile
79.5%
Related for CVE-2006-1012