Vulnerability Details CVE-2006-1265
SQL injection vulnerability in discussion.class.php in xhawk.net discussion 2.0 beta2 allows remote attackers to execute arbitrary SQL commands via the view parameter.
Exploit prediction scoring system (EPSS) score
EPSS Score 0.007
EPSS Ranking 72.0%
CVSS Severity
CVSS v2 Score 7.5
References
- http://evuln.com/vulns/92/summary.html
- http://www.osvdb.org/23971
- http://www.securityfocus.com/archive/1/427729/100/0/threaded
- http://www.securityfocus.com/bid/17121
- https://exchange.xforce.ibmcloud.com/vulnerabilities/25237
- http://evuln.com/vulns/92/summary.html
- http://www.osvdb.org/23971
- http://www.securityfocus.com/archive/1/427729/100/0/threaded
- http://www.securityfocus.com/bid/17121
- https://exchange.xforce.ibmcloud.com/vulnerabilities/25237
Products affected by CVE-2006-1265
-
cpe:2.3:a:xhawk.net:discussion:2.0_beta2