7.5
CVE-2006-3559
- EPSS 1.4%
- Veröffentlicht 13.07.2006 00:05:00
- Zuletzt bearbeitet 16.06.2026 22:27:18
- Quelle cve@mitre.org
- CVE-Watchlists
- Unerledigt
LoginMultiple SQL injection vulnerabilities in Arif Supriyanto auraCMS 1.62 allow remote attackers to execute arbitrary SQL commands and delete all shoutbox messages via the (1) name and (2) pesan parameters.
Daten sind bereitgestellt durch National Vulnerability Database (NVD)
Arif Supriyanto ≫ Auracms Version1.62
| Typ | Quelle | Score | Percentile |
|---|---|---|---|
| EPSS | FIRST.org | 1.4% | 0.689 |
| Quelle | Base Score | Exploit Score | Impact Score | Vector String |
|---|---|---|---|---|
| nvd@nist.gov | 7.5 | 10 | 6.4 |
AV:N/AC:L/Au:N/C:P/I:P/A:P
|
http://h1.ripway.com/lintah/adv/txt/01-iFX-2006-AuraCMS-v1.62-XSS-Bug.txt
http://securityreason.com/securityalert/1226
http://www.securityfocus.com/archive/1/439494/100/0/threaded
http://www.securityfocus.com/bid/18867
http://www.osvdb.org/28201
https://exchange.xforce.ibmcloud.com/vulnerabilities/27705