Lucene search

[email protected]NVD:CVE-2006-4072

HistoryAug 11, 2006 - 1:04 a.m.

CVE-2006-4072

2006-08-1101:04:00

[email protected]

web.nvd.nist.gov

CVSS2

6.5

Attack Vector

NETWORK

Attack Complexity

LOW

Authentication

SINGLE

Confidentiality Impact

PARTIAL

Integrity Impact

PARTIAL

Availability Impact

PARTIAL

AV:N/AC:L/Au:S/C:P/I:P/A:P

AI Score

8.2

Confidence

Low

EPSS

0.005

Percentile

77.4%

JSON

Multiple SQL injection vulnerabilities in Club-Nuke [XP] 2.0 LCID 2048 allow remote attackers to execute arbitrary SQL commands via the (1) haber_id parameter to haber_detay.asp, and allow remote authenticated users to execute arbitrary SQL commands via the (2) menu_id parameter to menu.asp.

Affected configurations

Nvd

Node

club-nukeclub-nukeMatch2.0_lcid_2048

VendorProductVersionCPE
club-nukeclub-nuke2.0_lcid_2048cpe:2.3:a:club-nuke:club-nuke:2.0_lcid_2048:*:*:*:*:*:*:*

Vendor	Product	Version	CPE
club-nuke	club-nuke	2.0_lcid_2048	cpe:2.3:a:club-nuke:club-nuke:2.0_lcid_2048:::::::*

References

secunia.com/advisories/21431

www.securityfocus.com/bid/19442

www.vupen.com/english/advisories/2006/3228

exchange.xforce.ibmcloud.com/vulnerabilities/28291

www.exploit-db.com/exploits/2150

CVSS2

6.5

Attack Vector

NETWORK

Attack Complexity

LOW

Authentication

SINGLE

Confidentiality Impact

PARTIAL

Integrity Impact

PARTIAL

Availability Impact

PARTIAL

AV:N/AC:L/Au:S/C:P/I:P/A:P

AI Score

8.2

Confidence

Low

EPSS

0.005

Percentile

77.4%

JSON

Related for NVD:CVE-2006-4072

cvelist1 cve1 exploitdb1