Vulnerability Details CVE-2006-2344
SQL injection vulnerability in inc/elementz.php in AliPAGER 1.5, with magic_quotes_gpc disabled, allows remote attackers to execute arbitrary SQL commands via the ubild parameter.
Exploit prediction scoring system (EPSS) score
EPSS Score 0.005
EPSS Ranking 63.8%
CVSS Severity
CVSS v2 Score 6.4
References
- http://secunia.com/advisories/20084
- http://www.hamid.ir/security/alipager.txt
- http://www.securityfocus.com/bid/17945
- http://www.vupen.com/english/advisories/2006/1773
- https://exchange.xforce.ibmcloud.com/vulnerabilities/26378
- http://secunia.com/advisories/20084
- http://www.hamid.ir/security/alipager.txt
- http://www.securityfocus.com/bid/17945
- http://www.vupen.com/english/advisories/2006/1773
- https://exchange.xforce.ibmcloud.com/vulnerabilities/26378
Products affected by CVE-2006-2344
-
cpe:2.3:a:ajax_softwares:alipager:1.00
-
cpe:2.3:a:ajax_softwares:alipager:1.12