CVE-2006-6110

2006-11-2622:00:00

mitre

www.cve.org

AI Score

8.6

Confidence

Low

EPSS

0.002

Percentile

60.0%

JSON

Multiple SQL injection vulnerabilities in an unspecified BPG-InfoTech Content Management System product allow remote attackers to execute arbitrary SQL commands via the (1) vjob parameter in publications_list.asp or (2) InfoID parameter in publication_view.asp.

References

aria-security.net/advisory/bpg.txt

securityreason.com/securityalert/1915

www.securityfocus.com/archive/1/451537/100/100/threaded