CVE-2006-2339

2006-05-1201:00:00

mitre

www.cve.org

AI Score

8.4

Confidence

Low

EPSS

0.007

Percentile

80.2%

JSON

SQL injection vulnerability in index.php in evoTopsites 2.x and evoTopsites Pro 2.x allows remote attackers to execute arbitrary SQL commands via the (1) cat_id and (2) id parameters.

References

secunia.com/advisories/19989

securitytracker.com/id?1016062

www.hamid.ir/security/evotopsites.txt

www.osvdb.org/25440

www.securityfocus.com/bid/17893

www.vupen.com/english/advisories/2006/1689

exchange.xforce.ibmcloud.com/vulnerabilities/26328