Lucene search

[email protected]NVD:CVE-2006-3541

HistoryJul 13, 2006 - 12:05 a.m.

CVE-2006-3541

2006-07-1300:05:00

[email protected]

web.nvd.nist.gov

CVSS2

6.5

Attack Vector

NETWORK

Attack Complexity

LOW

Authentication

SINGLE

Confidentiality Impact

PARTIAL

Integrity Impact

PARTIAL

Availability Impact

PARTIAL

AV:N/AC:L/Au:S/C:P/I:P/A:P

AI Score

Confidence

Low

EPSS

0.005

Percentile

77.2%

JSON

SQL injection vulnerability in Meine Links (aka My Links) in Kyberna ky2help allows remote authenticated users to execute arbitrary SQL commands via unspecified “textboxes.”

Affected configurations

Nvd

Node

kybernaky2help

VendorProductVersionCPE
kybernaky2help*cpe:2.3:a:kyberna:ky2help:*:*:*:*:*:*:*:*

Vendor	Product	Version	CPE
kyberna	ky2help	*	cpe:2.3:a:kyberna:ky2help::::::::

References

lists.grok.org.uk/pipermail/full-disclosure/2006-July/047634.html

secunia.com/advisories/20924

www.scip.ch/cgi-bin/smss/showadvf.pl?id=2351

www.securityfocus.com/archive/1/439034/100/0/threaded

www.securityfocus.com/bid/18800

exchange.xforce.ibmcloud.com/vulnerabilities/27598

CVSS2

6.5

Attack Vector

NETWORK

Attack Complexity

LOW

Authentication

SINGLE

Confidentiality Impact

PARTIAL

Integrity Impact

PARTIAL

Availability Impact

PARTIAL

AV:N/AC:L/Au:S/C:P/I:P/A:P

AI Score

Confidence

Low

EPSS

0.005

Percentile

77.2%

JSON

Related for NVD:CVE-2006-3541

cve1 cvelist1