Lucene search

[email protected]CVE-2006-2042

HistoryMay 09, 2006 - 7:02 p.m.

CVE-2006-2042

2006-05-0919:02:00

NVD-CWE-Other

[email protected]

web.nvd.nist.gov

adobe

dreamweaver

sql injection

vulnerability

coldfusion

php

mysql

asp

asp.net

jsp

nvd

8.1 High

AI Score

Confidence

Low

7.5 High

CVSS2

Access Vector

NETWORK

Access Complexity

LOW

Authentication

NONE

Confidentiality Impact

PARTIAL

Integrity Impact

PARTIAL

Availability Impact

PARTIAL

AV:N/AC:L/Au:N/C:P/I:P/A:P

0.01 Low

EPSS

Percentile

83.8%

JSON

Adobe Dreamweaver 8 before 8.0.2 and MX 2004 can generate code that allows SQL injection attacks in the (1) ColdFusion, (2) PHP mySQL, (3) ASP, (4) ASP.NET, and (5) JSP server models.

CPENameOperatorVersion
adobe:dreamweaveradobe dreamweavereq7.0
adobe:dreamweaveradobe dreamweavereq8.0

CPE	Name	Operator	Version
adobe:dreamweaver	adobe dreamweaver	eq	7.0
adobe:dreamweaver	adobe dreamweaver	eq	8.0

References

archives.neohapsis.com/archives/bugtraq/2006-05/0194.html

secunia.com/advisories/20054

securitytracker.com/id?1016050

www.adobe.com/support/security/bulletins/apsb06-07.html

www.osvdb.org/25361

www.securityfocus.com/bid/17928

www.vupen.com/english/advisories/2006/1753

exchange.xforce.ibmcloud.com/vulnerabilities/26339

8.1 High

AI Score

Confidence

Low

7.5 High

CVSS2

Access Vector

NETWORK

Access Complexity

LOW

Authentication

NONE

Confidentiality Impact

PARTIAL

Integrity Impact

PARTIAL

Availability Impact

PARTIAL

AV:N/AC:L/Au:N/C:P/I:P/A:P

0.01 Low

EPSS

Percentile

83.8%

JSON

Related for CVE-2006-2042

securityvulns1 prion1