Vulnerability Details CVE-2006-1917
SQL injection vulnerability in member.php in Blackorpheus ClanMemberSkript 1.0 allows remote attackers to execute arbitrary SQL commands via the userID parameter.
Exploit prediction scoring system (EPSS) score
EPSS Score 0.016
EPSS Ranking 81.0%
CVSS Severity
CVSS v2 Score 7.5
References
- http://downloads.securityfocus.com/vulnerabilities/exploits/Blackorpheus_poc
- http://secunia.com/advisories/19678
- http://www.securityfocus.com/bid/17558
- http://www.vupen.com/english/advisories/2006/1405
- https://exchange.xforce.ibmcloud.com/vulnerabilities/25902
- https://www.exploit-db.com/exploits/1683
- http://downloads.securityfocus.com/vulnerabilities/exploits/Blackorpheus_poc
- http://secunia.com/advisories/19678
- http://www.securityfocus.com/bid/17558
- http://www.vupen.com/english/advisories/2006/1405
- https://exchange.xforce.ibmcloud.com/vulnerabilities/25902
- https://www.exploit-db.com/exploits/1683
Products affected by CVE-2006-1917
-
cpe:2.3:a:blackorpheus:clanmemberskript:1.0