CVEDB API

Vulnerabilities

By Date
Known Exploited
Advanced Search

Vulnerable Software

Vendors
Products

Vulnerability Details CVE-2006-4798

SQL-Ledger before 2.4.4 stores a password in a query string, which might allow context-dependent attackers to obtain the password via a Referer field or browser history.

Exploit prediction scoring system (EPSS) score

EPSS Score 0.004

EPSS Ranking 59.1%

CVSS Severity

CVSS v2 Score 5.0

References

http://securityreason.com/securityalert/1579
http://www.securityfocus.com/archive/1/445512
https://exchange.xforce.ibmcloud.com/vulnerabilities/28671
http://securityreason.com/securityalert/1579
http://www.securityfocus.com/archive/1/445512
https://exchange.xforce.ibmcloud.com/vulnerabilities/28671

Products affected by CVE-2006-4798

Dws Systems Inc. » Sql-Ledger » Version: Any

cpe:2.3:a:dws_systems_inc.:sql-ledger:*

Vulnerabilities

Vulnerable Software

Vulnerability Details CVE-2006-4798

Products

Pricing

Contact Us