Vulnerability Details CVE-2006-2301
SQL injection vulnerability in admin_default.asp in OzzyWork Galeri allows remote attackers to execute arbitrary SQL commands via the (1) Login or (2) password fields.
Exploit prediction scoring system (EPSS) score
EPSS Score 0.011
EPSS Ranking 77.5%
CVSS Severity
CVSS v2 Score 7.5
References
- http://secunia.com/advisories/20049
- http://securityreason.com/securityalert/866
- http://securitytracker.com/id?1016053
- http://www.osvdb.org/25426
- http://www.securityfocus.com/archive/1/433358
- http://www.securityfocus.com/bid/17923
- http://www.vupen.com/english/advisories/2006/1768
- https://exchange.xforce.ibmcloud.com/vulnerabilities/26364
- http://secunia.com/advisories/20049
- http://securityreason.com/securityalert/866
- http://securitytracker.com/id?1016053
- http://www.osvdb.org/25426
- http://www.securityfocus.com/archive/1/433358
- http://www.securityfocus.com/bid/17923
- http://www.vupen.com/english/advisories/2006/1768
- https://exchange.xforce.ibmcloud.com/vulnerabilities/26364