CVE-2006-0856

2006-02-2323:00:00

mitre

www.cve.org

AI Score

8.6

Confidence

Low

EPSS

0.004

Percentile

74.9%

JSON

SQL injection vulnerability in login.php in Scriptme SmE GB Host 1.21 allows remote attackers to execute arbitrary SQL commands and bypass authentication via the Username parameter.

References

secunia.com/advisories/18823

www.evuln.com/vulns/66/summary.html

www.securityfocus.com/archive/1/425317/100/0/threaded

www.securityfocus.com/bid/16609

www.vupen.com/english/advisories/2006/0543

exchange.xforce.ibmcloud.com/vulnerabilities/24544