7.5
CVE-2006-5608
- EPSS 1.26%
- Veröffentlicht 30.10.2006 23:07:00
- Zuletzt bearbeitet 16.06.2026 22:31:31
- Quelle cve@mitre.org
- CVE-Watchlists
- Unerledigt
SQL injection vulnerability in Extended Tracker (xtracker) 4.7 before 1.5.2.1 for Drupal allows remote attackers to execute arbitrary SQL commands via unspecified vectors related to "parameters from URLs."
Daten sind bereitgestellt durch National Vulnerability Database (NVD)
Drupal ≫ Extended Tracker Version4.7
| Typ | Quelle | Score | Percentile |
|---|---|---|---|
| EPSS | FIRST.org | 1.26% | 0.657 |
| Quelle | Base Score | Exploit Score | Impact Score | Vector String |
|---|---|---|---|---|
| nvd@nist.gov | 7.5 | 10 | 6.4 |
AV:N/AC:L/Au:N/C:P/I:P/A:P
|
http://drupal.org/node/91358
http://secunia.com/advisories/22566
http://www.securityfocus.com/bid/20759
http://www.vupen.com/english/advisories/2006/4218
https://exchange.xforce.ibmcloud.com/vulnerabilities/29821