CVEDB API

Vulnerabilities

By Date
Known Exploited
Advanced Search

Vulnerable Software

Vendors
Products

Vulnerability Details CVE-2006-3926

Multiple SQL injection vulnerabilities in PhpProBid 5.24 allow remote attackers to execute arbitrary SQL commands via the (1) view or (2) start parameters to (a) viewfeedback.php or the (3) orderType parameter to (b) categories.php.

Exploit prediction scoring system (EPSS) score

EPSS Score 0.012

EPSS Ranking 78.3%

CVSS Severity

CVSS v2 Score 7.5

References

http://archives.neohapsis.com/archives/bugtraq/2006-07/0474.html
http://secunia.com/advisories/21201
http://securityreason.com/securityalert/1298
http://securitytracker.com/id?1016595
http://www.osvdb.org/27545
http://www.osvdb.org/27546
http://www.securityfocus.com/bid/19158
https://exchange.xforce.ibmcloud.com/vulnerabilities/28032
http://archives.neohapsis.com/archives/bugtraq/2006-07/0474.html
http://secunia.com/advisories/21201
http://securityreason.com/securityalert/1298
http://securitytracker.com/id?1016595
http://www.osvdb.org/27545
http://www.osvdb.org/27546
http://www.securityfocus.com/bid/19158
https://exchange.xforce.ibmcloud.com/vulnerabilities/28032

Products affected by CVE-2006-3926

Php Pro Bid » Php Pro Bid » Version: 5.24

cpe:2.3:a:php_pro_bid:php_pro_bid:5.24

Vulnerabilities

Vulnerable Software

Vulnerability Details CVE-2006-3926

Products

Pricing

Contact Us