5
CVE-2006-2061
- EPSS 1.69%
- Veröffentlicht 26.04.2006 20:06:00
- Zuletzt bearbeitet 03.04.2025 01:03:51
- Quelle cve@mitre.org
- CVE-Watchlists
- Unerledigt
LoginSQL injection vulnerability in lib/func_taskmanager.php in Invision Power Board (IPB) 2.1.x and 2.0.x before 20060425 allows remote attackers to execute arbitrary SQL commands via the ck parameter, which can inject at most 32 characters.
Daten sind bereitgestellt durch National Vulnerability Database (NVD)
Invision Power Services ≫ Invision Board Version2.0
Invision Power Services ≫ Invision Board Version2.0.1
Invision Power Services ≫ Invision Board Version2.0.2
Invision Power Services ≫ Invision Board Version2.0.3
Invision Power Services ≫ Invision Board Version2.0.4
Invision Power Services ≫ Invision Board Version2.0_alpha_3
Invision Power Services ≫ Invision Board Version2.0_pdr3
Invision Power Services ≫ Invision Board Version2.0_pf1
Invision Power Services ≫ Invision Board Version2.0_pf2
Invision Power Services ≫ Invision Board Version2.1
Invision Power Services ≫ Invision Board Version2.1.5
Invision Power Services ≫ Invision Board Version2.1_alpha2
Invision Power Services ≫ Invision Power Board Version2.1.5_2006-03-08
| Typ | Quelle | Score | Percentile |
|---|---|---|---|
| EPSS | FIRST.org | 1.69% | 0.816 |
| Quelle | Base Score | Exploit Score | Impact Score | Vector String |
|---|---|---|---|---|
| nvd@nist.gov | 5 | 10 | 2.9 |
AV:N/AC:L/Au:N/C:N/I:P/A:N
|