5

CVE-2006-3389

EPSS 1.2%
Veröffentlicht 06.07.2006 20:05:00
Zuletzt bearbeitet 03.04.2025 01:03:51
Quelle cve@mitre.org
CVE-Watchlists
Login
Unerledigt
Login

index.php in WordPress 2.0.3 allows remote attackers to obtain sensitive information, such as SQL table prefixes, via an invalid paged parameter, which displays the information in an SQL error message.  NOTE: this issue has been disputed by a third party who states that the issue does not leak any target-specific information.

Betroffene Produkte Warnungen 0 Metriken 2 CWE 0 Referenzen 13

Daten sind bereitgestellt durch National Vulnerability Database (NVD)

Wordpress ≫ Wordpress Version2.0.3

Zu dieser CVE wurde keine CISA KEV oder CERT.AT-Warnung gefunden.

EPSS Metriken
Typ	Quelle	Score	Percentile
EPSS	FIRST.org	1.2%	0.78

CVSS Metriken
Quelle	Base Score	Exploit Score	Impact Score	Vector String
nvd@nist.gov	5	10	2.9	AV:N/AC:L/Au:N/C:P/I:N/A:N

http://secunia.com/advisories/20928

Vendor Advisory

http://secunia.com/advisories/21447

http://security.gentoo.org/glsa/glsa-200608-19.xml

http://securityreason.com/securityalert/1187

http://www.securityfocus.com/archive/1/438942/100/0/threaded

http://www.securityfocus.com/archive/1/439031/100/0/threaded

http://www.securityfocus.com/archive/1/439062/100/0/threaded

http://www.securityfocus.com/archive/1/440127/100/0/threaded

http://www.securityfocus.com/bid/18779

http://www.vupen.com/english/advisories/2006/2661

https://nvd.nist.gov/vuln/detail/CVE-2006-3389

CVE Source (NVD)

https://cveawg.mitre.org/api/cve/CVE-2006-3389

CVE Source (JSON)

https://euvd.enisa.europa.eu/vulnerability/CVE-2006-3389

EUVD