PRIOn knowledge basePRION:CVE-2006-2508Sql injection
8.8 High
AI Score
Confidence
Low
6.4 Medium
CVSS2
Access Vector
NETWORK
Access Complexity
LOW
Authentication
NONE
Confidentiality Impact
NONE
Integrity Impact
PARTIAL
Availability Impact
PARTIAL
AV:N/AC:L/Au:N/C:N/I:P/A:P
0.023 Low
EPSS
Percentile
89.3%
SQL injection vulnerability in tr1.php in YourFreeWorld.com Stylish Text Ads Script allows remote attackers to execute arbitrary SQL commands via the id parameter, possibly involving an attack vector using advertise.php.
References
secunia.com/advisories/20213
securityreason.com/securityalert/931
www.osvdb.org/25691
www.osvdb.org/25692
www.securityfocus.com/archive/1/434527/100/0/threaded
www.securityfocus.com/bid/18044
www.vupen.com/english/advisories/2006/1897
exchange.xforce.ibmcloud.com/vulnerabilities/26569
exchange.xforce.ibmcloud.com/vulnerabilities/26570
8.8 High
AI Score
Confidence
Low
6.4 Medium
CVSS2
Access Vector
NETWORK
Access Complexity
LOW
Authentication
NONE
Confidentiality Impact
NONE
Integrity Impact
PARTIAL
Availability Impact
PARTIAL
AV:N/AC:L/Au:N/C:N/I:P/A:P
0.023 Low
EPSS
Percentile
89.3%