CVE-2006-4598

2006-09-0700:00:00

mitre

www.cve.org

AI Score

8.5

Confidence

Low

EPSS

0.011

Percentile

84.3%

JSON

Multiple SQL injection vulnerabilities in links.php in ssLinks 1.22 allow remote attackers to execute arbitrary SQL commands via the (1) go parameter and (2) id parameter in a rate action.

References

secunia.com/advisories/21736

securityreason.com/securityalert/1505

www.securityfocus.com/archive/1/445009/100/0/threaded

www.securityfocus.com/archive/1/447319/100/0/threaded

www.securityfocus.com/bid/19815

www.vupen.com/english/advisories/2006/3443