5

CVE-2006-3389

EPSS 1.2%
Published 06.07.2006 20:05:00
Last modified 03.04.2025 01:03:51
Source cve@mitre.org
Teams watchlist Login
Open Login

index.php in WordPress 2.0.3 allows remote attackers to obtain sensitive information, such as SQL table prefixes, via an invalid paged parameter, which displays the information in an SQL error message.  NOTE: this issue has been disputed by a third party who states that the issue does not leak any target-specific information.

Affected products Warnungen 0 Metrics 2 CWE 0 References 13

Data is provided by the National Vulnerability Database (NVD)

Wordpress ≫ Wordpress Version2.0.3

Zu dieser CVE wurde keine CISA KEV oder CERT.AT-Warnung gefunden.

EPSS Metriken
Type	Source	Score	Percentile
EPSS	FIRST.org	1.2%	0.78

CVSS Metriken
Source	Base Score	Exploit Score	Impact Score	Vector string
nvd@nist.gov	5	10	2.9	AV:N/AC:L/Au:N/C:P/I:N/A:N

http://secunia.com/advisories/20928

Vendor Advisory

http://secunia.com/advisories/21447

http://security.gentoo.org/glsa/glsa-200608-19.xml

http://securityreason.com/securityalert/1187

http://www.securityfocus.com/archive/1/438942/100/0/threaded

http://www.securityfocus.com/archive/1/439031/100/0/threaded

http://www.securityfocus.com/archive/1/439062/100/0/threaded

http://www.securityfocus.com/archive/1/440127/100/0/threaded

http://www.securityfocus.com/bid/18779

http://www.vupen.com/english/advisories/2006/2661

https://nvd.nist.gov/vuln/detail/CVE-2006-3389

CVE Source (NVD)

https://cveawg.mitre.org/api/cve/CVE-2006-3389

CVE Source (JSON)

https://euvd.enisa.europa.eu/vulnerability/CVE-2006-3389

EUVD