Lucene search
HistoryOct 03, 2022 - 4:21 p.m.
CVE-2006-1005
agencyprofile.asp
parodia 6.2
remote attackers
sensitive information
sql error
6.4 Medium
CVSS2
Attack Vector
NETWORK
Attack Complexity
LOW
Authentication
NONE
Confidentiality Impact
NONE
Integrity Impact
PARTIAL
Availability Impact
PARTIAL
AV:N/AC:L/Au:N/C:N/I:P/A:P
6.7 Medium
AI Score
Confidence
Low
0.004 Low
EPSS
Percentile
73.5%
agencyprofile.asp in Parodia 6.2 and earlier might allow remote attackers to obtain sensitive information by triggering an SQL error via an invalid AG_ID parameter. NOTE: the provenance of this information is unknown; the details are obtained from third party information.
Affected configurations
Node
cactusoftparodiaMatch6.2
| CPE | Name | Operator | Version |
|---|---|---|---|
| cactusoft:parodia | cactusoft parodia | eq | 6.2 |
References
Related
prion
prion
Information disclosure
2006-03-06 20:06:00
nvd
nvd
CVE-2006-1005
2006-03-06 20:06:00
cvelist
cvelist
CVE-2006-1005
2022-10-03 16:21:18
6.4 Medium
CVSS2
Attack Vector
NETWORK
Attack Complexity
LOW
Authentication
NONE
Confidentiality Impact
NONE
Integrity Impact
PARTIAL
Availability Impact
PARTIAL
AV:N/AC:L/Au:N/C:N/I:P/A:P
6.7 Medium
AI Score
Confidence
Low
0.004 Low
EPSS
Percentile
73.5%
Related for CVE-2006-1005