Vulnerability Details CVE-2006-1805
SQL injection vulnerability in member.php in PowerClan 1.14 allows remote attackers to execute arbitrary SQL commands via the memberid parameter.
Exploit prediction scoring system (EPSS) score
EPSS Score 0.006
EPSS Ranking 68.5%
CVSS Severity
CVSS v2 Score 7.5
References
- http://d4igoro.blogspot.com/2006/04/powerclan-114-sql-injection.html
- http://secunia.com/advisories/19689
- http://securityreason.com/securityalert/706
- http://www.securityfocus.com/archive/1/431005/100/0/threaded
- http://www.securityfocus.com/bid/17528
- http://www.vupen.com/english/advisories/2006/1371
- https://exchange.xforce.ibmcloud.com/vulnerabilities/25876
- http://d4igoro.blogspot.com/2006/04/powerclan-114-sql-injection.html
- http://secunia.com/advisories/19689
- http://securityreason.com/securityalert/706
- http://www.securityfocus.com/archive/1/431005/100/0/threaded
- http://www.securityfocus.com/bid/17528
- http://www.vupen.com/english/advisories/2006/1371
- https://exchange.xforce.ibmcloud.com/vulnerabilities/25876
Products affected by CVE-2006-1805
-
cpe:2.3:a:powerscripts:powerclan:1.14