7.5
CVE-2006-2279
- EPSS 2.15%
- Veröffentlicht 10.05.2006 02:14:00
- Zuletzt bearbeitet 16.06.2026 22:24:42
- Quelle cve@mitre.org
- CVE-Watchlists
- Unerledigt
LoginMultiple SQL injection vulnerabilities in SaphpLesson 3.0 allow remote attackers to execute arbitrary SQL commands via (1) the Find parameter in (a) search.php, and the (2) LID and (3) Rate parameters in (b) misc.php.
Daten sind bereitgestellt durch National Vulnerability Database (NVD)
Arabless ≫ Saphplesson Version3.0
| Typ | Quelle | Score | Percentile |
|---|---|---|---|
| EPSS | FIRST.org | 2.15% | 0.797 |
| Quelle | Base Score | Exploit Score | Impact Score | Vector String |
|---|---|---|---|---|
| nvd@nist.gov | 7.5 | 10 | 6.4 |
AV:N/AC:L/Au:N/C:P/I:P/A:P
|
http://secunia.com/advisories/20034
http://securityreason.com/securityalert/862
http://www.securityfocus.com/archive/1/433052/100/0/threaded
http://www.vupen.com/english/advisories/2006/1708
http://www.osvdb.org/25362
http://www.osvdb.org/25363
http://www.securityfocus.com/bid/17848
https://exchange.xforce.ibmcloud.com/vulnerabilities/26293