Lucene search

K
cveMitreCVE-2006-1553
HistoryMar 31, 2006 - 11:06 a.m.

CVE-2006-1553

2006-03-3111:06:00
mitre
web.nvd.nist.gov
23
cve
sql injection
vsns lemon 3.2.0
security vulnerability
nvd

CVSS2

5.1

Attack Vector

NETWORK

Attack Complexity

HIGH

Authentication

NONE

Confidentiality Impact

PARTIAL

Integrity Impact

PARTIAL

Availability Impact

PARTIAL

AV:N/AC:H/Au:N/C:P/I:P/A:P

AI Score

8.4

Confidence

Low

EPSS

0.011

Percentile

84.6%

SQL injection vulnerability in functions/final_functions.php in VSNS Lemon 3.2.0, with magic_quotes_gpc disabled, allows remote attackers to execute arbitrary SQL commands via the id parameter.

Affected configurations

Nvd
Node
tachyonvsns_lemonMatch3.2.0
VendorProductVersionCPE
tachyonvsns_lemon3.2.0cpe:2.3:a:tachyon:vsns_lemon:3.2.0:*:*:*:*:*:*:*

CVSS2

5.1

Attack Vector

NETWORK

Attack Complexity

HIGH

Authentication

NONE

Confidentiality Impact

PARTIAL

Integrity Impact

PARTIAL

Availability Impact

PARTIAL

AV:N/AC:H/Au:N/C:P/I:P/A:P

AI Score

8.4

Confidence

Low

EPSS

0.011

Percentile

84.6%

Related for CVE-2006-1553