7.5
CVE-2006-2835
- EPSS 1.25%
- Veröffentlicht 06.06.2006 20:06:00
- Zuletzt bearbeitet 16.06.2026 22:25:52
- Quelle cve@mitre.org
- CVE-Watchlists
- Unerledigt
LoginSQL injection vulnerability in saphplesson 2.0 allows remote attackers to execute arbitrary SQL commands via the (1) forumid parameter in add.php and (2) lessid parameter in show.php.
Daten sind bereitgestellt durch National Vulnerability Database (NVD)
Arabless ≫ Saphplesson Version2.0
| Typ | Quelle | Score | Percentile |
|---|---|---|---|
| EPSS | FIRST.org | 1.25% | 0.656 |
| Quelle | Base Score | Exploit Score | Impact Score | Vector String |
|---|---|---|---|---|
| nvd@nist.gov | 7.5 | 10 | 6.4 |
AV:N/AC:L/Au:N/C:P/I:P/A:P
|
http://securityreason.com/securityalert/1047
http://www.securityfocus.com/archive/1/435202/100/0/threaded
http://www.securityfocus.com/archive/1/440120
http://www.securityfocus.com/archive/1/472798/100/0/threaded
http://www.securityfocus.com/bid/18117
http://www.securityfocus.com/bid/18934
https://exchange.xforce.ibmcloud.com/vulnerabilities/26757