Vulnerability Details CVE-2006-1334
Multiple SQL injection vulnerabilities in Maian Weblog 2.0 allow remote attackers to execute arbitrary SQL commands via the (1) entry and (2) email parameters to (a) print.php and (b) mail.php.
Exploit prediction scoring system (EPSS) score
EPSS Score 0.035
EPSS Ranking 87.3%
CVSS Severity
CVSS v2 Score 6.4
References
- http://evuln.com/vulns/101/summary.html
- http://secunia.com/advisories/19273
- http://securityreason.com/securityalert/638
- http://securitytracker.com/id?1015818
- http://www.osvdb.org/23945
- http://www.osvdb.org/23946
- http://www.securityfocus.com/archive/1/428903/100/0/threaded
- http://www.securityfocus.com/bid/17159
- http://www.securityfocus.com/bid/17247
- http://www.vupen.com/english/advisories/2006/0994
- https://exchange.xforce.ibmcloud.com/vulnerabilities/25295
- http://evuln.com/vulns/101/summary.html
- http://secunia.com/advisories/19273
- http://securityreason.com/securityalert/638
- http://securitytracker.com/id?1015818
- http://www.osvdb.org/23945
- http://www.osvdb.org/23946
- http://www.securityfocus.com/archive/1/428903/100/0/threaded
- http://www.securityfocus.com/bid/17159
- http://www.securityfocus.com/bid/17247
- http://www.vupen.com/english/advisories/2006/0994
- https://exchange.xforce.ibmcloud.com/vulnerabilities/25295
Products affected by CVE-2006-1334
-
cpe:2.3:a:maian_script_world:maian_weblog:*