Lucene search
HistoryMar 29, 2006 - 8:06 p.m.
CVE-2006-1489
CVSS2
7.5
Attack Vector
NETWORK
Attack Complexity
LOW
Authentication
NONE
Confidentiality Impact
PARTIAL
Integrity Impact
PARTIAL
Availability Impact
PARTIAL
AV:N/AC:L/Au:N/C:P/I:P/A:P
AI Score
8.5
Confidence
Low
EPSS
0.002
Percentile
61.1%
Multiple SQL injection vulnerabilities in FusionZONE CouponZONE local.cfm in 4.2 and earlier allow remote attackers to execute arbitrary SQL commands via the (1) companyid, (2) scat, and (3) coid parameters.
Affected configurations
Node
fusionzonecouponzoneMatch4.2
| Vendor | Product | Version | CPE |
|---|---|---|---|
| fusionzone | couponzone | 4.2 | cpe:2.3:a:fusionzone:couponzone:4.2:*:*:*:*:*:*:* |
Related
prion
prion
Sql injection
2006-03-29 20:06:00
exploitdb
exploitdb
FusionZONE CouponZONE 4.2 - Multiple SQL Injections
2006-03-27 00:00:00
cve
cve
CVE-2006-1489
2006-03-29 20:06:00
cvelist
cvelist
CVE-2006-1489
2006-03-29 20:00:00
CVSS2
7.5
Attack Vector
NETWORK
Attack Complexity
LOW
Authentication
NONE
Confidentiality Impact
PARTIAL
Integrity Impact
PARTIAL
Availability Impact
PARTIAL
AV:N/AC:L/Au:N/C:P/I:P/A:P
AI Score
8.5
Confidence
Low
EPSS
0.002
Percentile
61.1%
Related for NVD:CVE-2006-1489