Lucene search

[email protected]CVE-2006-6245

HistoryDec 04, 2006 - 11:28 a.m.

CVE-2006-6245

2006-12-0411:28:00

[email protected]

web.nvd.nist.gov

cve

2006

6245

sql injection

photo organizer

nvd

security vulnerability

7.5 High

CVSS2

Attack Vector

NETWORK

Attack Complexity

LOW

Authentication

NONE

Confidentiality Impact

PARTIAL

Integrity Impact

PARTIAL

Availability Impact

PARTIAL

AV:N/AC:L/Au:N/C:P/I:P/A:P

8.9 High

AI Score

Confidence

Low

0.004 Low

EPSS

Percentile

75.0%

JSON

Multiple SQL injection vulnerabilities in Photo Organizer (PO) 2.32b and earlier allow remote attackers to execute arbitrary SQL commands via unspecified vectors.

Affected configurations

NVD

Node

photo_organizerphoto_organizerRange≤2.32b

CPENameOperatorVersion
photo_organizer:photo_organizerphoto organizerle2.32b

CPE	Name	Operator	Version
photo_organizer:photo_organizer	photo organizer	le	2.32b

References

po.shaftnet.org/po_stable_changelog

secunia.com/advisories/23176

www.securityfocus.com/bid/21351

www.vupen.com/english/advisories/2006/4766

exchange.xforce.ibmcloud.com/vulnerabilities/30576

7.5 High

CVSS2

Attack Vector

NETWORK

Attack Complexity

LOW

Authentication

NONE

Confidentiality Impact

PARTIAL

Integrity Impact

PARTIAL

Availability Impact

PARTIAL

AV:N/AC:L/Au:N/C:P/I:P/A:P

8.9 High

AI Score

Confidence

Low

0.004 Low

EPSS

Percentile

75.0%

JSON

Related for CVE-2006-6245

nvd1 cvelist1