Lucene search

[email protected]CVE-2006-1666

HistoryApr 07, 2006 - 10:04 a.m.

CVE-2006-1666

2006-04-0710:04:00

NVD-CWE-Other

[email protected]

web.nvd.nist.gov

cve-2006-1666

sql injection

forum.php

arab portal 2.0.1

vulnerability

remote attackers

nvd

8.7 High

AI Score

Confidence

Low

7.5 High

CVSS2

Access Vector

NETWORK

Access Complexity

LOW

Authentication

NONE

Confidentiality Impact

PARTIAL

Integrity Impact

PARTIAL

Availability Impact

PARTIAL

AV:N/AC:L/Au:N/C:P/I:P/A:P

0.003 Low

EPSS

Percentile

70.6%

JSON

SQL injection vulnerability in forum.php in Arab Portal 2.0.1 stable allows remote attackers to execute arbitrary SQL commands via the mineID parameter.

CPENameOperatorVersion
arab_portal:arab_portalarab portaleq2.0.1_stable

CPE	Name	Operator	Version
arab_portal:arab_portal	arab portal	eq	2.0.1_stable

References

securityreason.com/securityalert/644

www.securityfocus.com/archive/1/429940/100/0/threaded

www.securityfocus.com/bid/17375

exchange.xforce.ibmcloud.com/vulnerabilities/25656

8.7 High

AI Score

Confidence

Low

7.5 High

CVSS2

Access Vector

NETWORK

Access Complexity

LOW

Authentication

NONE

Confidentiality Impact

PARTIAL

Integrity Impact

PARTIAL

Availability Impact

PARTIAL

AV:N/AC:L/Au:N/C:P/I:P/A:P

0.003 Low

EPSS

Percentile

70.6%

JSON

Related for CVE-2006-1666

prion2 cve1