Lucene search
MitreCVE-2006-1489HistoryMar 29, 2006 - 8:06 p.m.
CVE-2006-1489
2006-03-2920:06:00
mitre
web.nvd.nist.gov
18
cve-2006-1489
sql injection
fusionzone
couponzone
remote attackers
nvd
CVSS2
7.5
Attack Vector
NETWORK
Attack Complexity
LOW
Authentication
NONE
Confidentiality Impact
PARTIAL
Integrity Impact
PARTIAL
Availability Impact
PARTIAL
AV:N/AC:L/Au:N/C:P/I:P/A:P
AI Score
8.5
Confidence
Low
EPSS
0.002
Percentile
61.1%
Multiple SQL injection vulnerabilities in FusionZONE CouponZONE local.cfm in 4.2 and earlier allow remote attackers to execute arbitrary SQL commands via the (1) companyid, (2) scat, and (3) coid parameters.
Affected configurations
Node
fusionzonecouponzoneMatch4.2
| Vendor | Product | Version | CPE |
|---|---|---|---|
| fusionzone | couponzone | 4.2 | cpe:2.3:a:fusionzone:couponzone:4.2:*:*:*:*:*:*:* |
Related
prion
prion
Sql injection
2006-03-29 20:06:00
nvd
nvd
CVE-2006-1489
2006-03-29 20:06:00
cvelist
cvelist
CVE-2006-1489
2006-03-29 20:00:00
exploitdb
exploitdb
FusionZONE CouponZONE 4.2 - Multiple SQL Injections
2006-03-27 00:00:00
CVSS2
7.5
Attack Vector
NETWORK
Attack Complexity
LOW
Authentication
NONE
Confidentiality Impact
PARTIAL
Integrity Impact
PARTIAL
Availability Impact
PARTIAL
AV:N/AC:L/Au:N/C:P/I:P/A:P
AI Score
8.5
Confidence
Low
EPSS
0.002
Percentile
61.1%
Related for CVE-2006-1489