7.5

CVE-2006-0313

Multiple SQL injection vulnerabilities in PDFdirectory before 1.0 allow remote attackers to execute arbitrary SQL commands via multiple unspecified vectors involving (1) util.php, (2) userpref.php, (3) user.php, (4) uploadfrm.php, (5) title.php, (6) team.php, (7) stats.php, (8) page.php, (9) org.php, (10) member.php, (11) index.php, (12) group.php, or (13) anniv.php.
Daten sind bereitgestellt durch National Vulnerability Database (NVD)
PdfdirectoryPdfdirectory Version0.2.2
PdfdirectoryPdfdirectory Version0.2.3
PdfdirectoryPdfdirectory Version0.2.4
PdfdirectoryPdfdirectory Version0.2.5
PdfdirectoryPdfdirectory Version0.2.6
PdfdirectoryPdfdirectory Version0.2.7
PdfdirectoryPdfdirectory Version0.2.8
PdfdirectoryPdfdirectory Version0.2.9
PdfdirectoryPdfdirectory Version0.2.10
PdfdirectoryPdfdirectory Version0.2.11
Zu dieser CVE wurde keine Warnung gefunden.
EPSS Metriken
Typ Quelle Score Percentile
EPSS FIRST.org 1.97% 0.778
CVSS Metriken
Quelle Base Score Exploit Score Impact Score Vector String
nvd@nist.gov 7.5 10 6.4
AV:N/AC:L/Au:N/C:P/I:P/A:P
Es wurden noch keine Informationen zu CWE veröffentlicht.
http://secunia.com/advisories/18459
Patch
Vendor Advisory
http://sourceforge.net/project/shownotes.php?release_id=382411&group_id=122682
Patch
http://www.osvdb.org/22403
Patch
http://www.osvdb.org/22404
Patch
http://www.osvdb.org/22405
Patch
http://www.osvdb.org/22406
Patch
http://www.osvdb.org/22407
Patch
http://www.osvdb.org/22408
Patch
http://www.osvdb.org/22409
Patch
http://www.osvdb.org/22410
Patch
http://www.osvdb.org/22411
Patch
http://www.osvdb.org/22412
Patch
http://www.osvdb.org/22413
Patch
http://www.osvdb.org/22414
Patch
http://www.osvdb.org/22415
Patch
http://www.securityfocus.com/bid/16273
Patch
http://www.vupen.com/english/advisories/2006/0231