CVEDB API

Vulnerabilities

By Date
Known Exploited
Advanced Search

Vulnerable Software

Vendors
Products

Vulnerability Details CVE-2006-0221

SQL injection vulnerability in index.asp in the Admin Panel in Dragon Design Services Network (DDSN) cm3 content manager (CM3CMS) allows remote attackers to execute arbitrary SQL commands via the (1) username or (2) password.

Exploit prediction scoring system (EPSS) score

EPSS Score 0.005

EPSS Ranking 65.0%

CVSS Severity

CVSS v2 Score 7.5

References

http://www.osvdb.org/22696
http://www.securityfocus.com/archive/1/421941/100/0/threaded
http://www.securityfocus.com/bid/16231
https://exchange.xforce.ibmcloud.com/vulnerabilities/24266
http://www.osvdb.org/22696
http://www.securityfocus.com/archive/1/421941/100/0/threaded
http://www.securityfocus.com/bid/16231
https://exchange.xforce.ibmcloud.com/vulnerabilities/24266

Products affected by CVE-2006-0221

Ddsn » Cm3cms » Version: Any

cpe:2.3:a:ddsn:cm3cms:*

Vulnerabilities

Vulnerable Software

Vulnerability Details CVE-2006-0221

Products

Pricing

Contact Us