Vulnerability Details CVE-2006-2853
SQL injection vulnerability in content.php in abarcar Realty Portal 5.1.5 allows remote attackers to execute arbitrary SQL commands via the cat parameter.
Exploit prediction scoring system (EPSS) score
EPSS Score 0.006
EPSS Ranking 68.2%
CVSS Severity
CVSS v2 Score 7.5
References
- http://downloads.securityfocus.com/vulnerabilities/exploits/abarcar_sql_poc.txt
- http://secunia.com/advisories/20504
- http://www.osvdb.org/26226
- http://www.security.nnov.ru/Mdocument929.html
- http://www.securityfocus.com/bid/18218
- http://www.vupen.com/english/advisories/2006/2194
- https://exchange.xforce.ibmcloud.com/vulnerabilities/26993
- http://downloads.securityfocus.com/vulnerabilities/exploits/abarcar_sql_poc.txt
- http://secunia.com/advisories/20504
- http://www.osvdb.org/26226
- http://www.security.nnov.ru/Mdocument929.html
- http://www.securityfocus.com/bid/18218
- http://www.vupen.com/english/advisories/2006/2194
- https://exchange.xforce.ibmcloud.com/vulnerabilities/26993
Products affected by CVE-2006-2853
-
cpe:2.3:a:abarcar:abarcar_realty_portal:5.1.5