CVE-2006-4039

2006-08-0922:00:00

mitre

www.cve.org

8.5 High

AI Score

Confidence

Low

0.008 Low

EPSS

Percentile

81.5%

JSON

Multiple SQL injection vulnerabilities in eintragen.php in GaesteChaos 0.2 and earlier allow remote attackers to execute arbitrary SQL commands via the (1) gastname, (2) gastwohnort, or (3) gasteintrag parameters.

References

marc.info/?l=full-disclosure&m=115464286427745&w=2

secunia.com/advisories/21357

www.securityfocus.com/archive/1/442205/100/200/threaded

www.securityfocus.com/bid/19343

www.vupen.com/english/advisories/2006/3155

exchange.xforce.ibmcloud.com/vulnerabilities/28218