CVEDB API

Vulnerabilities

By Date
Known Exploited
Advanced Search

Vulnerable Software

Vendors
Products

Vulnerability Details CVE-2006-3096

Multiple SQL injection vulnerabilities in iPostMX 2005 2.0 and earlier allow remote attackers to execute arbitrary SQL commands via the (1) forum parameter in messagepost.cfm and (2) topic parameter in topics.cfm. NOTE: this item was created based on information in a blog entry that was apparently removed after CVE analysis. As of 20060619, CVE is attempting to determine the cause of the removal.

Exploit prediction scoring system (EPSS) score

EPSS Score 0.004

EPSS Ranking 61.8%

CVSS Severity

CVSS v2 Score 7.5

References

http://pridels0.blogspot.com/2006/06/ipostmx-2005-vuln.html
https://exchange.xforce.ibmcloud.com/vulnerabilities/27144
http://pridels0.blogspot.com/2006/06/ipostmx-2005-vuln.html
https://exchange.xforce.ibmcloud.com/vulnerabilities/27144

Products affected by CVE-2006-3096

Ipostmx » Ipostmx 2005 » Version: Any

cpe:2.3:a:ipostmx:ipostmx_2005:*

Vulnerabilities

Vulnerable Software

Vulnerability Details CVE-2006-3096

Products

Pricing

Contact Us