Lucene search
HistoryAug 26, 2006 - 9:04 p.m.
CVE-2006-4367
cve-2006-4367
sql injection
alltopics.php
all topics hack
phpbb 2.0.21
nvd
7.5 High
CVSS2
Attack Vector
NETWORK
Attack Complexity
LOW
Authentication
NONE
Confidentiality Impact
PARTIAL
Integrity Impact
PARTIAL
Availability Impact
PARTIAL
AV:N/AC:L/Au:N/C:P/I:P/A:P
8.4 High
AI Score
Confidence
Low
0.002 Low
EPSS
Percentile
61.2%
SQL injection vulnerability in alltopics.php in the All Topics Hack 1.5.0 and earlier for phpBB 2.0.21 allows remote attackers to execute arbitrary SQL commands via the start parameter.
Affected configurations
Node
all_topicsall_topics_hackRange≤1.5.0
| CPE | Name | Operator | Version |
|---|---|---|---|
| all_topics:all_topics_hack | all topics all topics hack | le | 1.5.0 |
Related
cvelist
cvelist
CVE-2006-4367
2006-08-26 01:00:00
nvd
nvd
CVE-2006-4367
2006-08-26 21:04:00
dsquare
dsquare
phpBB alltopics.php SQLI
2012-01-26 00:00:00
7.5 High
CVSS2
Attack Vector
NETWORK
Attack Complexity
LOW
Authentication
NONE
Confidentiality Impact
PARTIAL
Integrity Impact
PARTIAL
Availability Impact
PARTIAL
AV:N/AC:L/Au:N/C:P/I:P/A:P
8.4 High
AI Score
Confidence
Low
0.002 Low
EPSS
Percentile
61.2%
Related for CVE-2006-4367