CVEDB API

Vulnerabilities

By Date
Known Exploited
Advanced Search

Vulnerable Software

Vendors
Products

Vulnerability Details CVE-2006-2034

SQL injection vulnerability in function/showprofile.php in FlexBB 0.5.5 allows remote attackers to execute arbitrary SQL commands, and view all usernames and passwords, via the id parameter to the showprofile page in index.php.

Exploit prediction scoring system (EPSS) score

EPSS Score 0.003

EPSS Ranking 56.7%

CVSS Severity

CVSS v2 Score 7.5

References

http://www.osvdb.org/24867
http://www.securityfocus.com/archive/1/431793/100/0/threaded
http://www.securityfocus.com/bid/17574
http://www.osvdb.org/24867
http://www.securityfocus.com/archive/1/431793/100/0/threaded
http://www.securityfocus.com/bid/17574

Products affected by CVE-2006-2034

Flexbb » Flexbb » Version: 0.5.5

cpe:2.3:a:flexbb:flexbb:0.5.5

Vulnerabilities

Vulnerable Software

Vulnerability Details CVE-2006-2034

Products

Pricing

Contact Us