Lucene search

[email protected]NVD:CVE-2006-2508

HistoryMay 22, 2006 - 7:02 p.m.

CVE-2006-2508

2006-05-2219:02:00

[email protected]

web.nvd.nist.gov

CVSS2

6.4

Attack Vector

NETWORK

Attack Complexity

LOW

Authentication

NONE

Confidentiality Impact

NONE

Integrity Impact

PARTIAL

Availability Impact

PARTIAL

AV:N/AC:L/Au:N/C:N/I:P/A:P

AI Score

8.3

Confidence

Low

EPSS

0.022

Percentile

89.5%

JSON

SQL injection vulnerability in tr1.php in YourFreeWorld.com Stylish Text Ads Script allows remote attackers to execute arbitrary SQL commands via the id parameter, possibly involving an attack vector using advertise.php.

Affected configurations

Nvd

Node

yourfreeworldstylish_text_ads_script

VendorProductVersionCPE
yourfreeworldstylish_text_ads_script*cpe:2.3:a:yourfreeworld:stylish_text_ads_script:*:*:*:*:*:*:*:*

Vendor	Product	Version	CPE
yourfreeworld	stylish_text_ads_script	*	cpe:2.3:a:yourfreeworld:stylish_text_ads_script::::::::

References

secunia.com/advisories/20213

securityreason.com/securityalert/931

www.osvdb.org/25691

www.osvdb.org/25692

www.securityfocus.com/archive/1/434527/100/0/threaded

www.securityfocus.com/bid/18044

www.vupen.com/english/advisories/2006/1897

exchange.xforce.ibmcloud.com/vulnerabilities/26569

exchange.xforce.ibmcloud.com/vulnerabilities/26570

CVSS2

6.4

Attack Vector

NETWORK

Attack Complexity

LOW

Authentication

NONE

Confidentiality Impact

NONE

Integrity Impact

PARTIAL

Availability Impact

PARTIAL

AV:N/AC:L/Au:N/C:N/I:P/A:P

AI Score

8.3

Confidence

Low

EPSS

0.022

Percentile

89.5%

JSON

Related for NVD:CVE-2006-2508

prion1 cvelist2 cve2 nvd1