Lucene search
K
Database
Vendors
Products
Years
CVSS
Scanner
Agent Scanning
API Scanning
Manual Audit
Perimeter Scanner
Scanning
Projects
Email
Webhook
Plugins
Resources
Documents
Blog
Glossary
FAQ
Pricing
Contacts
About Us
Partners
Branding Guideline
cvelistMitreCVELIST:CVE-2006-3940
HistoryJul 31, 2006 - 10:00 p.m.

CVE-2006-3940

2006-07-3122:00:00
mitre
www.cve.org

8.4 High

AI Score

Confidence

Low

0.019 Low

EPSS

Percentile

88.5%

JSON

Multiple SQL injection vulnerabilities in phpbb-Auction allow remote attackers to execute arbitrary SQL commands via (1) the ar parameter in auction_room.php and (2) the u parameter in auction_store.php. NOTE: the auction_rating.php vector is already covered by CVE-2005-1234. NOTE: the original disclosure states that the product name is β€œPHP-Auction”, but this is probably an error.

Related

cve 2
nvd 2
cvelist 1
cve
cve
CVE-2006-3940
2006-07-31 22:04:00
CVE-2005-1234
2005-05-02 04:00:00
nvd
nvd
CVE-2006-3940
2006-07-31 22:04:00
CVE-2005-1234
2005-05-02 04:00:00
cvelist
cvelist
CVE-2005-1234
2005-04-24 04:00:00

8.4 High

AI Score

Confidence

Low

0.019 Low

EPSS

Percentile

88.5%

JSON
Related for CVELIST:CVE-2006-3940
cve2nvd2cvelist1