7.5
CVE-2006-2320
- EPSS 1.41%
- Veröffentlicht 12.05.2006 00:02:00
- Zuletzt bearbeitet 16.06.2026 22:24:46
- Quelle cve@mitre.org
- CVE-Watchlists
- Unerledigt
LoginMultiple SQL injection vulnerabilities in Ideal Science Ideal BB 1.5.4a and earlier allow remote attackers to execute arbitrary SQL commands via multiple unspecified vectors related to stored procedure calls. NOTE: due to lack of details from the researcher, it is not clear whether this overlaps CVE-2004-2209.
Daten sind bereitgestellt durch National Vulnerability Database (NVD)
Ideal Science ≫ Idealbb Version1.5.0_beta1
Ideal Science ≫ Idealbb Version1.5.0_beta2
Ideal Science ≫ Idealbb Version1.5.0_beta3
Ideal Science ≫ Idealbb Version1.5.0_beta4
Ideal Science ≫ Idealbb Version1.5.0_rc1
Ideal Science ≫ Idealbb Version1.5.1
Ideal Science ≫ Idealbb Version1.5.2
Ideal Science ≫ Idealbb Version1.5.2a
Ideal Science ≫ Idealbb Version1.5.2b
Ideal Science ≫ Idealbb Version1.5.2c
Ideal Science ≫ Idealbb Version1.5.3
Ideal Science ≫ Idealbb Version1.5.3_beta1
Ideal Science ≫ Idealbb Version1.5.3_beta2
Ideal Science ≫ Idealbb Version1.5.3a
Ideal Science ≫ Idealbb Version1.5.3b
Ideal Science ≫ Idealbb Version1.5.4a
| Typ | Quelle | Score | Percentile |
|---|---|---|---|
| EPSS | FIRST.org | 1.41% | 0.692 |
| Quelle | Base Score | Exploit Score | Impact Score | Vector String |
|---|---|---|---|---|
| nvd@nist.gov | 7.5 | 10 | 6.4 |
AV:N/AC:L/Au:N/C:P/I:P/A:P
|
http://secunia.com/advisories/20035
http://securityreason.com/securityalert/871
http://www.idealscience.com/ibb/posts.aspx?postID=24415
http://www.securityfocus.com/archive/1/433248/100/0/threaded
http://www.securityfocus.com/bid/17920
http://www.vupen.com/english/advisories/2006/1729
http://www.osvdb.org/25457
https://exchange.xforce.ibmcloud.com/vulnerabilities/26354