Lucene search
MitreCVE-2006-5955HistoryNov 17, 2006 - 12:07 a.m.
CVE-2006-5955
2006-11-1700:07:00
mitre
web.nvd.nist.gov
33
cve-2006-5955
sql injection
20/20 datashed
real estate listing system
remote attackers
arbitrary sql commands
itemid parameter
CVSS2
7.5
Attack Vector
NETWORK
Attack Complexity
LOW
Authentication
NONE
Confidentiality Impact
PARTIAL
Integrity Impact
PARTIAL
Availability Impact
PARTIAL
AV:N/AC:L/Au:N/C:P/I:P/A:P
AI Score
8.7
Confidence
Low
EPSS
0.005
Percentile
75.6%
SQL injection vulnerability in listings.asp in 20/20 DataShed (aka Real Estate Listing System) allows remote attackers to execute arbitrary SQL commands via the itemID parameter. NOTE: some of these details are obtained from third party information.
Affected configurations
Node
20_20_applications20_20_datashed
| Vendor | Product | Version | CPE |
|---|---|---|---|
| 20_20_applications | 20_20_datashed | * | cpe:2.3:a:20_20_applications:20_20_datashed:*:*:*:*:*:*:*:* |
Related
nvd
nvd
CVE-2006-5955
2006-11-17 00:07:00
CVE-2006-6067
2006-11-22 02:07:00
cvelist
cvelist
CVE-2006-5955
2006-11-17 00:00:00
CVE-2006-6067
2006-11-22 02:00:00
cve
cve
CVE-2006-6067
2006-11-22 02:07:00
CVSS2
7.5
Attack Vector
NETWORK
Attack Complexity
LOW
Authentication
NONE
Confidentiality Impact
PARTIAL
Integrity Impact
PARTIAL
Availability Impact
PARTIAL
AV:N/AC:L/Au:N/C:P/I:P/A:P
AI Score
8.7
Confidence
Low
EPSS
0.005
Percentile
75.6%
Related for CVE-2006-5955