Lucene search

K
cve[email protected]CVE-2006-1334
HistoryMar 21, 2006 - 1:06 a.m.

CVE-2006-1334

2006-03-2101:06:00
NVD-CWE-Other
web.nvd.nist.gov
23
cve
2006
1334
sql injection
maian weblog 2.0
remote attackers
arbitrary sql commands
print.php
mail.php

8.9 High

AI Score

Confidence

Low

6.4 Medium

CVSS2

Access Vector

NETWORK

Access Complexity

LOW

Authentication

NONE

Confidentiality Impact

PARTIAL

Integrity Impact

PARTIAL

Availability Impact

NONE

AV:N/AC:L/Au:N/C:P/I:P/A:N

0.008 Low

EPSS

Percentile

81.6%

Multiple SQL injection vulnerabilities in Maian Weblog 2.0 allow remote attackers to execute arbitrary SQL commands via the (1) entry and (2) email parameters to (a) print.php and (b) mail.php.

8.9 High

AI Score

Confidence

Low

6.4 Medium

CVSS2

Access Vector

NETWORK

Access Complexity

LOW

Authentication

NONE

Confidentiality Impact

PARTIAL

Integrity Impact

PARTIAL

Availability Impact

NONE

AV:N/AC:L/Au:N/C:P/I:P/A:N

0.008 Low

EPSS

Percentile

81.6%

Related for CVE-2006-1334