7.5
CVE-2006-2179
- EPSS 2.67%
- Veröffentlicht 04.05.2006 12:38:00
- Zuletzt bearbeitet 16.06.2026 22:24:29
- Quelle cve@mitre.org
- CVE-Watchlists
- Unerledigt
LoginMultiple SQL injection vulnerabilities in CyberBuild allow remote attackers to execute arbitrary SQL commands via the (1) SessionID parameter to login.asp or (2) ProductIndex parameter to browse0.htm.
Daten sind bereitgestellt durch National Vulnerability Database (NVD)
| Typ | Quelle | Score | Percentile |
|---|---|---|---|
| EPSS | FIRST.org | 2.67% | 0.838 |
| Quelle | Base Score | Exploit Score | Impact Score | Vector String |
|---|---|---|---|---|
| nvd@nist.gov | 7.5 | 10 | 6.4 |
AV:N/AC:L/Au:N/C:P/I:P/A:P
|
http://pridels0.blogspot.com/2006/05/cyberbuild-vuln.html
http://secunia.com/advisories/19889
http://www.securityfocus.com/bid/17829
http://www.vupen.com/english/advisories/2006/1630
http://www.osvdb.org/25195
http://www.osvdb.org/25196
https://exchange.xforce.ibmcloud.com/vulnerabilities/26201