Lucene search
MitreCVE-2006-1643HistoryApr 06, 2006 - 10:04 a.m.
CVE-2006-1643
2006-04-0610:04:00
mitre
web.nvd.nist.gov
31
cve
2006
1643
sql injection
login.php
interact 2.1.1
remote attackers
arbitrary sql commands
CVSS2
7.5
Attack Vector
NETWORK
Attack Complexity
LOW
Authentication
NONE
Confidentiality Impact
PARTIAL
Integrity Impact
PARTIAL
Availability Impact
PARTIAL
AV:N/AC:L/Au:N/C:P/I:P/A:P
AI Score
8.1
Confidence
Low
EPSS
0.006
Percentile
79.5%
SQL injection vulnerability in login.php in Interact 2.1.1 allows remote attackers to execute arbitrary SQL commands via the user_name parameter. NOTE: the provenance of this information is unknown; the details are obtained from third party.
Affected configurations
Node
interactinteractRange≤2.1.1
ORinteractinteractMatch1.8.7
ORinteractinteractMatch1.9
ORinteractinteractMatch1.9.1
ORinteractinteractMatch2.0
ORinteractinteractMatch2.1
| Vendor | Product | Version | CPE |
|---|---|---|---|
| interact | interact | * | cpe:2.3:a:interact:interact:*:*:*:*:*:*:*:* |
| interact | interact | 1.8.7 | cpe:2.3:a:interact:interact:1.8.7:*:*:*:*:*:*:* |
| interact | interact | 1.9 | cpe:2.3:a:interact:interact:1.9:*:*:*:*:*:*:* |
| interact | interact | 1.9.1 | cpe:2.3:a:interact:interact:1.9.1:*:*:*:*:*:*:* |
| interact | interact | 2.0 | cpe:2.3:a:interact:interact:2.0:*:*:*:*:*:*:* |
| interact | interact | 2.1 | cpe:2.3:a:interact:interact:2.1:*:*:*:*:*:*:* |
Related
cvelist
cvelist
CVE-2006-1643
2006-04-06 10:00:00
prion
prion
Sql injection
2006-04-06 10:04:00
nvd
nvd
CVE-2006-1643
2006-04-06 10:04:00
CVSS2
7.5
Attack Vector
NETWORK
Attack Complexity
LOW
Authentication
NONE
Confidentiality Impact
PARTIAL
Integrity Impact
PARTIAL
Availability Impact
PARTIAL
AV:N/AC:L/Au:N/C:P/I:P/A:P
AI Score
8.1
Confidence
Low
EPSS
0.006
Percentile
79.5%
Related for CVE-2006-1643