CVE-2006-2508

Exploit

EPSS 3.1%
Veröffentlicht 22.05.2006 19:02:00
Zuletzt bearbeitet 03.04.2025 01:03:51
Quelle cve@mitre.org
CVE-Watchlists
Login
Unerledigt
Login

SQL injection vulnerability in tr1.php in YourFreeWorld.com Stylish Text Ads Script allows remote attackers to execute arbitrary SQL commands via the id parameter, possibly involving an attack vector using advertise.php.

Betroffene Produkte Warnungen 0 Metriken 2 CWE 0 Referenzen 12

Daten sind bereitgestellt durch National Vulnerability Database (NVD)

Yourfreeworld ≫ Stylish Text Ads Script

Zu dieser CVE wurde keine CISA KEV oder CERT.AT-Warnung gefunden.

EPSS Metriken
Typ	Quelle	Score	Percentile
EPSS	FIRST.org	3.1%	0.863

CVSS Metriken
Quelle	Base Score	Exploit Score	Impact Score	Vector String
nvd@nist.gov	6.4	10	4.9	AV:N/AC:L/Au:N/C:N/I:P/A:P

http://secunia.com/advisories/20213

Vendor Advisory

http://securityreason.com/securityalert/931

http://www.osvdb.org/25691

Exploit

http://www.osvdb.org/25692

Exploit

http://www.securityfocus.com/archive/1/434527/100/0/threaded

http://www.securityfocus.com/bid/18044

Exploit

http://www.vupen.com/english/advisories/2006/1897

https://exchange.xforce.ibmcloud.com/vulnerabilities/26569

https://exchange.xforce.ibmcloud.com/vulnerabilities/26570

https://nvd.nist.gov/vuln/detail/CVE-2006-2508

CVE Source (NVD)

https://cveawg.mitre.org/api/cve/CVE-2006-2508

CVE Source (JSON)

https://euvd.enisa.europa.eu/vulnerability/CVE-2006-2508

EUVD