Lucene search

PRIOn knowledge basePRION:CVE-2006-1817

HistoryApr 18, 2006 - 10:02 a.m.

Sql injection

2006-04-1810:02:00

PRIOn knowledge base

www.prio-n.com

9.1 High

AI Score

Confidence

Low

2.6 Low

CVSS2

Access Vector

NETWORK

Access Complexity

HIGH

Authentication

NONE

Confidentiality Impact

NONE

Integrity Impact

PARTIAL

Availability Impact

NONE

AV:N/AC:H/Au:N/C:N/I:P/A:N

0.022 Low

EPSS

Percentile

89.1%

JSON

SQL injection vulnerability in authcheck.php in warforge.NEWS 1.0, with magic_quotes_gpc disabled, allows remote attackers to execute arbitrary SQL commands via the (1) authusername and possibly the (2) authpassword cookie.

CPENameOperatorVersion
warforge.newseq1.0

CPE	Name	Operator	Version
	warforge.news	eq	1.0

References

evuln.com/vulns/125/summary.html

www.securityfocus.com/archive/1/432104/100/0/threaded

www.securityfocus.com/bid/17520

www.securityfocus.com/bid/17705

www.vupen.com/english/advisories/2006/1359

exchange.xforce.ibmcloud.com/vulnerabilities/25900

9.1 High

AI Score

Confidence

Low

2.6 Low

CVSS2

Access Vector

NETWORK

Access Complexity

HIGH

Authentication

NONE

Confidentiality Impact

NONE

Integrity Impact

PARTIAL

Availability Impact

NONE

AV:N/AC:H/Au:N/C:N/I:P/A:N

0.022 Low

EPSS

Percentile

89.1%

JSON

Related for PRION:CVE-2006-1817