Vulnerability Details CVE-2006-4035
SQL injection vulnerability in counterchaos.php in CounterChaos 0.48c and earlier allows remote attackers to execute arbitrary SQL commands via the Referer HTTP header.
Exploit prediction scoring system (EPSS) score
EPSS Score 0.01
EPSS Ranking 77.0%
CVSS Severity
CVSS v2 Score 7.5
References
- http://archives.neohapsis.com/archives/bugtraq/2006-08/0080.html
- http://secunia.com/advisories/21356
- http://securityreason.com/securityalert/1350
- http://www.frsirt.com/english/reference/17541
- http://www.securityfocus.com/bid/19344
- http://www.vupen.com/english/advisories/2006/3153
- https://exchange.xforce.ibmcloud.com/vulnerabilities/28222
- http://archives.neohapsis.com/archives/bugtraq/2006-08/0080.html
- http://secunia.com/advisories/21356
- http://securityreason.com/securityalert/1350
- http://www.frsirt.com/english/reference/17541
- http://www.securityfocus.com/bid/19344
- http://www.vupen.com/english/advisories/2006/3153
- https://exchange.xforce.ibmcloud.com/vulnerabilities/28222
Products affected by CVE-2006-4035
-
cpe:2.3:a:counterchaos:counterchaos:0.48c