Vulnerability Details CVE-2006-3296
SQL injection vulnerability in view.php in Open Guestbook 0.5 allows remote attackers to execute arbitrary SQL commands via the offset parameter.
Exploit prediction scoring system (EPSS) score
EPSS Score 0.005
EPSS Ranking 65.4%
CVSS Severity
CVSS v2 Score 7.5
References
- http://secunia.com/advisories/20796
- http://securityreason.com/securityalert/1166
- http://www.securityfocus.com/archive/1/438381/100/0/threaded
- http://www.securityfocus.com/bid/18666
- http://www.vupen.com/english/advisories/2006/2545
- https://exchange.xforce.ibmcloud.com/vulnerabilities/27400
- http://secunia.com/advisories/20796
- http://securityreason.com/securityalert/1166
- http://www.securityfocus.com/archive/1/438381/100/0/threaded
- http://www.securityfocus.com/bid/18666
- http://www.vupen.com/english/advisories/2006/2545
- https://exchange.xforce.ibmcloud.com/vulnerabilities/27400
Products affected by CVE-2006-3296
-
cpe:2.3:a:george_currums:open_guestbook:0.5