Vulnerability Details CVE-2006-3851
SQL injection vulnerability in upgradev1.php in X7 Chat 2.0.4 and earlier allows remote attackers to execute arbitrary SQL commands via the old_prefix parameter.
Exploit prediction scoring system (EPSS) score
EPSS Score 0.004
EPSS Ranking 56.8%
CVSS Severity
CVSS v2 Score 7.5
References
- http://www.securityfocus.com/bid/19123
- http://www.vupen.com/english/advisories/2006/2941
- https://exchange.xforce.ibmcloud.com/vulnerabilities/27921
- https://www.exploit-db.com/exploits/2068
- http://www.securityfocus.com/bid/19123
- http://www.vupen.com/english/advisories/2006/2941
- https://exchange.xforce.ibmcloud.com/vulnerabilities/27921
- https://www.exploit-db.com/exploits/2068