Lucene search

[email protected]CVE-2006-1327

HistoryMar 21, 2006 - 1:06 a.m.

CVE-2006-1327

2006-03-2101:06:00

[email protected]

web.nvd.nist.gov

cve-2006-1327

sql injection

reg.php

softbb 0.1

remote attackers

nvd

8.4 High

AI Score

Confidence

Low

7.5 High

CVSS2

Access Vector

Access Complexity

Authentication

NONE

Confidentiality Impact

PARTIAL

Integrity Impact

PARTIAL

Availability Impact

PARTIAL

AV:N/AC:L/Au:N/C:P/I:P/A:P

0.009 Low

EPSS

Percentile

82.6%

JSON

SQL injection vulnerability in reg.php in SoftBB 0.1 allows remote attackers to execute arbitrary SQL commands via the mail parameter.

Affected configurations

NVD

Node

softbbsoftbbMatch0.1

CPENameOperatorVersion
softbb:softbbsoftbbeq0.1

CPE	Name	Operator	Version
softbb:softbb	softbb	eq	0.1

References

secunia.com/advisories/19283

www.osvdb.org/23999

www.securityfocus.com/bid/17160

www.vupen.com/english/advisories/2006/1002

exchange.xforce.ibmcloud.com/vulnerabilities/25320

www.exploit-db.com/exploits/1594

8.4 High

AI Score

Confidence

Low

7.5 High

CVSS2

Access Vector

Access Complexity

Authentication

NONE

Confidentiality Impact

PARTIAL

Integrity Impact

PARTIAL

Availability Impact

PARTIAL

AV:N/AC:L/Au:N/C:P/I:P/A:P

0.009 Low

EPSS

Percentile

82.6%

JSON

Related for CVE-2006-1327

prion1 nvd1 cvelist1 packetstorm1