CVE-2006-1481

2006-03-2901:00:00

mitre

www.cve.org

8 High

AI Score

Confidence

Low

0.003 Low

EPSS

Percentile

69.3%

JSON

SQL injection vulnerability in search.php in PHP Ticket 0.71 allows remote authenticated users to execute arbitrary SQL commands and obtain usernames and passwords via the frm_search_in parameter.

References

secunia.com/advisories/19412

www.securityfocus.com/bid/17229

www.vupen.com/english/advisories/2006/1106

exchange.xforce.ibmcloud.com/vulnerabilities/25436

www.exploit-db.com/exploits/1609