Lucene search

MitreCVE-2006-1113

HistoryMar 09, 2006 - 1:06 p.m.

CVE-2006-1113

2006-03-0913:06:00

mitre

web.nvd.nist.gov

cve-2006-1113

sql injection

loudblog

podcast.php

nvd

CVSS2

Attack Vector

NETWORK

Attack Complexity

LOW

Authentication

NONE

Confidentiality Impact

NONE

Integrity Impact

PARTIAL

Availability Impact

NONE

AV:N/AC:L/Au:N/C:N/I:P/A:N

AI Score

8.4

Confidence

Low

EPSS

0.011

Percentile

84.1%

JSON

SQL injection vulnerability in podcast.php in Loudblog before 0.42 allows remote attackers to execute arbitrary SQL commands via the id parameter.

Affected configurations

Nvd

Node

gerrit_van_aakenloudblogMatch0.41

VendorProductVersionCPE
gerrit_van_aakenloudblog0.41cpe:2.3:a:gerrit_van_aaken:loudblog:0.41:*:*:*:*:*:*:*

Vendor	Product	Version	CPE
gerrit_van_aaken	loudblog	0.41	cpe:2.3:a:gerrit_van_aaken:loudblog:0.41:::::::*

References

loudblog.de/forum/viewtopic.php?id=590

secunia.com/advisories/19172

www.securityfocus.com/archive/1/426973/100/0/threaded

www.securityfocus.com/bid/17023

www.vupen.com/english/advisories/2006/0878

exchange.xforce.ibmcloud.com/vulnerabilities/25101

CVSS2

Attack Vector

NETWORK

Attack Complexity

LOW

Authentication

NONE

Confidentiality Impact

NONE

Integrity Impact

PARTIAL

Availability Impact

NONE

AV:N/AC:L/Au:N/C:N/I:P/A:N

AI Score

8.4

Confidence

Low

EPSS

0.011

Percentile

84.1%

JSON

Related for CVE-2006-1113