Lucene search

MitreCVE-2006-6930

HistoryJan 13, 2007 - 2:28 a.m.

CVE-2006-6930

2007-01-1302:28:00

mitre

web.nvd.nist.gov

sql injection

rapid classified 3.1

remote attack

security vulnerability

CVSS2

7.5

Attack Vector

NETWORK

Attack Complexity

LOW

Authentication

NONE

Confidentiality Impact

PARTIAL

Integrity Impact

PARTIAL

Availability Impact

PARTIAL

AV:N/AC:L/Au:N/C:P/I:P/A:P

AI Score

8.8

Confidence

Low

EPSS

0.004

Percentile

75.2%

JSON

SQL injection vulnerability in viewad.asp in Rapid Classified 3.1 allows remote attackers to execute arbitrary SQL commands via the id parameter.

Affected configurations

Nvd

Node

ga_softrapid_classifiedMatch3.1

VendorProductVersionCPE
ga_softrapid_classified3.1cpe:2.3:a:ga_soft:rapid_classified:3.1:*:*:*:*:*:*:*

Vendor	Product	Version	CPE
ga_soft	rapid_classified	3.1	cpe:2.3:a:ga_soft:rapid_classified:3.1:::::::*

References

s-a-p.ca/index.php?page=OurAdvisories&id=44

secunia.com/advisories/22985

securityreason.com/securityalert/2142

www.securityfocus.com/archive/1/452088/100/0/threaded

www.securityfocus.com/bid/21197

www.vupen.com/english/advisories/2006/4632

exchange.xforce.ibmcloud.com/vulnerabilities/30449

CVSS2

7.5

Attack Vector

NETWORK

Attack Complexity

LOW

Authentication

NONE

Confidentiality Impact

PARTIAL

Integrity Impact

PARTIAL

Availability Impact

PARTIAL

AV:N/AC:L/Au:N/C:P/I:P/A:P

AI Score

8.8

Confidence

Low

EPSS

0.004

Percentile

75.2%

JSON

Related for CVE-2006-6930