Lucene search

[email protected]CVE-2006-1639

HistoryApr 06, 2006 - 10:04 a.m.

CVE-2006-1639

2006-04-0610:04:00

NVD-CWE-Other

[email protected]

web.nvd.nist.gov

sql injection

wpblog

security vulnerability

remote attackers

nvd

8.7 High

AI Score

Confidence

Low

5.1 Medium

CVSS2

Access Vector

NETWORK

Access Complexity

HIGH

Authentication

NONE

Confidentiality Impact

PARTIAL

Integrity Impact

PARTIAL

Availability Impact

PARTIAL

AV:N/AC:H/Au:N/C:P/I:P/A:P

0.01 Low

EPSS

Percentile

83.5%

JSON

SQL injection vulnerability in index.php in wpBlog 0.4 allows remote attackers to execute arbitrary SQL commands via the postid parameter.

CPENameOperatorVersion
wire_plastik_design:wpblogwire plastik design wpblogeq0.4

CPE	Name	Operator	Version
wire_plastik_design:wpblog	wire plastik design wpblog	eq	0.4

References

evuln.com/vulns/119/summary.html

secunia.com/advisories/19538

securityreason.com/securityalert/734

securitytracker.com/id?1015951

www.osvdb.org/24385

www.securityfocus.com/archive/1/431186/100/0/threaded

www.securityfocus.com/bid/17381

www.vupen.com/english/advisories/2006/1238

exchange.xforce.ibmcloud.com/vulnerabilities/25628

8.7 High

AI Score

Confidence

Low

5.1 Medium

CVSS2

Access Vector

NETWORK

Access Complexity

HIGH

Authentication

NONE

Confidentiality Impact

PARTIAL

Integrity Impact

PARTIAL

Availability Impact

PARTIAL

AV:N/AC:H/Au:N/C:P/I:P/A:P

0.01 Low

EPSS

Percentile

83.5%

JSON

Related for CVE-2006-1639

securityvulns1 prion1