Lucene search

[email protected]CVE-2006-3518

HistoryJul 11, 2006 - 11:05 p.m.

CVE-2006-3518

2006-07-1123:05:00

[email protected]

web.nvd.nist.gov

cve-2006-3518

sql injection

sayfalaaltlist.asp

webvizyon portal 2006

nvd

security vulnerability

7.5 High

CVSS2

Attack Vector

NETWORK

Attack Complexity

LOW

Authentication

NONE

Confidentiality Impact

PARTIAL

Integrity Impact

PARTIAL

Availability Impact

PARTIAL

AV:N/AC:L/Au:N/C:P/I:P/A:P

8.8 High

AI Score

Confidence

Low

0.004 Low

EPSS

Percentile

72.5%

JSON

SQL injection vulnerability in SayfalaAltList.asp in Webvizyon Portal 2006 allows remote attackers to execute arbitrary SQL commands via the ID parameter.

Affected configurations

NVD

Node

webvizyon.netwebvizyon_portalMatch2006

CPENameOperatorVersion
webvizyon.net:webvizyon_portalwebvizyon.net webvizyon portaleq2006

CPE	Name	Operator	Version
webvizyon.net:webvizyon_portal	webvizyon.net webvizyon portal	eq	2006

References

securityreason.com/securityalert/1203

securitytracker.com/id?1016463

www.osvdb.org/28192

www.securityfocus.com/archive/1/439599/100/0/threaded

www.securityfocus.com/bid/18899

www.vupen.com/english/advisories/2006/2737

exchange.xforce.ibmcloud.com/vulnerabilities/27637

7.5 High

CVSS2

Attack Vector

NETWORK

Attack Complexity

LOW

Authentication

NONE

Confidentiality Impact

PARTIAL

Integrity Impact

PARTIAL

Availability Impact

PARTIAL

AV:N/AC:L/Au:N/C:P/I:P/A:P

8.8 High

AI Score

Confidence

Low

0.004 Low

EPSS

Percentile

72.5%

JSON

Related for CVE-2006-3518

nvd1 cvelist1