6.4
CVE-2006-2202
- EPSS 1.58%
- Veröffentlicht 04.05.2006 17:06:00
- Zuletzt bearbeitet 16.06.2026 22:24:32
- Quelle cve@mitre.org
- CVE-Watchlists
- Unerledigt
SQL injection vulnerability in post.php in Invision Gallery 2.0.6 allows remote attackers to execute arbitrary SQL commands via the album parameter.
Daten sind bereitgestellt durch National Vulnerability Database (NVD)
Invision Power Services ≫ Invision Gallery Version2.0.6
| Typ | Quelle | Score | Percentile |
|---|---|---|---|
| EPSS | FIRST.org | 1.58% | 0.723 |
| Quelle | Base Score | Exploit Score | Impact Score | Vector String |
|---|---|---|---|---|
| nvd@nist.gov | 6.4 | 10 | 4.9 |
AV:N/AC:L/Au:N/C:P/I:P/A:N
|
http://secunia.com/advisories/19948
http://securityreason.com/securityalert/841
http://securitytracker.com/id?1016019
http://www.osvdb.org/25231
http://www.securityfocus.com/archive/1/432731/100/0/threaded
http://www.securityfocus.com/archive/1/432952/100/0/threaded
http://www.securityfocus.com/bid/17793
http://www.vupen.com/english/advisories/2006/1655
https://exchange.xforce.ibmcloud.com/vulnerabilities/26224