CVEDB API

Vulnerabilities

By Date
Known Exploited
Advanced Search

Vulnerable Software

Vendors
Products

Vulnerability Details CVE-2006-0358

Multiple SQL injection vulnerabilities in PowerPortal, possibly 1.1 beta through 1.3, allow remote attackers to execute arbitrary SQL commands via the search parameter in (1) index.php and (2) search.php. NOTE: This issue might overlap CVE-2004-0663.2.

Exploit prediction scoring system (EPSS) score

EPSS Score 0.007

EPSS Ranking 70.6%

CVSS Severity

CVSS v2 Score 7.5

References

http://secunia.com/advisories/10172
http://web.archive.org/web/20050303003128/http://powerportal.sourceforge.net/
http://www.osvdb.org/27957
http://www.osvdb.org/27958
http://www.securityfocus.com/archive/1/422151/100/0/threaded
http://www.securityfocus.com/bid/16279
https://exchange.xforce.ibmcloud.com/vulnerabilities/24196
http://secunia.com/advisories/10172
http://web.archive.org/web/20050303003128/http://powerportal.sourceforge.net/
http://www.osvdb.org/27957
http://www.osvdb.org/27958
http://www.securityfocus.com/archive/1/422151/100/0/threaded
http://www.securityfocus.com/bid/16279
https://exchange.xforce.ibmcloud.com/vulnerabilities/24196

Products affected by CVE-2006-0358

Powerportal » Powerportal » Version: 1.1b

cpe:2.3:a:powerportal:powerportal:1.1b
Powerportal » Powerportal » Version: 1.3

cpe:2.3:a:powerportal:powerportal:1.3
Powerportal » Powerportal » Version: 1.3b

cpe:2.3:a:powerportal:powerportal:1.3b

Vulnerabilities

Vulnerable Software

Vulnerability Details CVE-2006-0358

Products

Pricing

Contact Us