Lucene search

[email protected]CVE-2006-0540

HistoryFeb 04, 2006 - 2:02 a.m.

CVE-2006-0540

2006-02-0402:02:00

[email protected]

web.nvd.nist.gov

sql injection

tachyon vanilla guestbook

remote attackers

arbitrary sql commands

nvd

7.5 High

CVSS2

Attack Vector

NETWORK

Attack Complexity

LOW

Authentication

NONE

Confidentiality Impact

PARTIAL

Integrity Impact

PARTIAL

Availability Impact

PARTIAL

AV:N/AC:L/Au:N/C:P/I:P/A:P

8.6 High

AI Score

Confidence

Low

0.002 Low

EPSS

Percentile

60.5%

JSON

Multiple SQL injection vulnerabilities in Tachyon Vanilla Guestbook 1.0 beta allow remote attackers to execute arbitrary SQL commands via unspecified vectors.

Affected configurations

NVD

Node

tachyonvanilla_guestbookMatch1.0_beta

CPENameOperatorVersion
tachyon:vanilla_guestbooktachyon vanilla guestbookeq1.0_beta

CPE	Name	Operator	Version
tachyon:vanilla_guestbook	tachyon vanilla guestbook	eq	1.0_beta

References

www.evuln.com/vulns/54/summary.html

www.securityfocus.com/archive/1/423957/100/0/threaded

www.securityfocus.com/bid/16464

exchange.xforce.ibmcloud.com/vulnerabilities/24412

7.5 High

CVSS2

Attack Vector

NETWORK

Attack Complexity

LOW

Authentication

NONE

Confidentiality Impact

PARTIAL

Integrity Impact

PARTIAL

Availability Impact

PARTIAL

AV:N/AC:L/Au:N/C:P/I:P/A:P

8.6 High

AI Score

Confidence

Low

0.002 Low

EPSS

Percentile

60.5%

JSON

Related for CVE-2006-0540

prion1 cvelist1 nvd1