Vulnerability Details CVE-2006-0462
SQL injection vulnerability in comentarios.php in AndoNET Blog 2004.09.02 allows remote attackers to execute arbitrary SQL commands via the entrada parameter.
Exploit prediction scoring system (EPSS) score
EPSS Score 0.03
EPSS Ranking 86.0%
CVSS Severity
CVSS v2 Score 7.5
References
- http://evuln.com/vulns/50/summary.html
- http://secunia.com/advisories/18633
- http://securityreason.com/securityalert/377
- http://www.osvdb.org/22755
- http://www.securityfocus.com/archive/1/423162
- http://www.securityfocus.com/bid/16393
- http://www.vupen.com/english/advisories/2006/0327
- https://exchange.xforce.ibmcloud.com/vulnerabilities/24309
- http://evuln.com/vulns/50/summary.html
- http://secunia.com/advisories/18633
- http://securityreason.com/securityalert/377
- http://www.osvdb.org/22755
- http://www.securityfocus.com/archive/1/423162
- http://www.securityfocus.com/bid/16393
- http://www.vupen.com/english/advisories/2006/0327
- https://exchange.xforce.ibmcloud.com/vulnerabilities/24309
Products affected by CVE-2006-0462
-
cpe:2.3:a:andonet:andonet_blog:2004.09.02