7.5
CVE-2006-4238
- EPSS 1.08%
- Veröffentlicht 21.08.2006 18:04:00
- Zuletzt bearbeitet 16.06.2026 22:28:41
- Quelle cve@mitre.org
- CVE-Watchlists
- Unerledigt
LoginSQL injection vulnerability in torrents.php in WebTorrent (WTcom) 0.2.4 and earlier allows remote attackers to execute arbitrary SQL commands via the cat parameter in category mode.
Daten sind bereitgestellt durch National Vulnerability Database (NVD)
Wtcom ≫ Web Torrent Version <= 0.2.4_alpha
Wtcom ≫ Web Torrent Version0.1_alpha
Wtcom ≫ Web Torrent Version0.2.1_alpha
Wtcom ≫ Web Torrent Version0.2.2_alpha
Wtcom ≫ Web Torrent Version0.2.3_alpha
Wtcom ≫ Web Torrent Version0.2_alpha
| Typ | Quelle | Score | Percentile |
|---|---|---|---|
| EPSS | FIRST.org | 1.08% | 0.607 |
| Quelle | Base Score | Exploit Score | Impact Score | Vector String |
|---|---|---|---|---|
| nvd@nist.gov | 7.5 | 10 | 6.4 |
AV:N/AC:L/Au:N/C:P/I:P/A:P
|
http://www.securityfocus.com/bid/19569
https://exchange.xforce.ibmcloud.com/vulnerabilities/28426
https://www.exploit-db.com/exploits/2200