6.8
CVE-2006-7077
- EPSS 1.12%
- Veröffentlicht 02.03.2007 21:18:00
- Zuletzt bearbeitet 16.06.2026 22:34:20
- Quelle cve@mitre.org
- CVE-Watchlists
- Unerledigt
SQL injection vulnerability in guestbook.php in Advanced Guestbook 2.4 for phpBB allows remote attackers to execute arbitrary SQl commands via the entry parameter.
Daten sind bereitgestellt durch National Vulnerability Database (NVD)
Phpbb Group ≫ Phpbb Advanced Guestbook Version2.4.0
| Typ | Quelle | Score | Percentile |
|---|---|---|---|
| EPSS | FIRST.org | 1.12% | 0.617 |
| Quelle | Base Score | Exploit Score | Impact Score | Vector String |
|---|---|---|---|---|
| nvd@nist.gov | 6.8 | 8.6 | 6.4 |
AV:N/AC:M/Au:N/C:P/I:P/A:P
|
http://secunia.com/advisories/19905
http://archives.neohapsis.com/archives/bugtraq/2006-07/0381.html
http://securityreason.com/securityalert/2323
http://www.majorsecurity.de/advisory/major_rls25.txt
https://exchange.xforce.ibmcloud.com/vulnerabilities/27908