Vulnerability Details CVE-2006-5446
SQL injection vulnerability in lobby/config.php in Casinosoft Casino Script (aka Masvet) 3.2 allows remote attackers to execute arbitrary SQL commands via the cfam parameter.
Exploit prediction scoring system (EPSS) score
EPSS Score 0.004
EPSS Ranking 62.1%
CVSS Severity
CVSS v2 Score 5.1
References
- http://secunia.com/advisories/22398
- http://www.securityfocus.com/bid/20646
- http://www.securitylab.ru/forum/read.php?FID=16&TID=23884
- http://www.vupen.com/english/advisories/2006/4131
- https://exchange.xforce.ibmcloud.com/vulnerabilities/29684
- http://secunia.com/advisories/22398
- http://www.securityfocus.com/bid/20646
- http://www.securitylab.ru/forum/read.php?FID=16&TID=23884
- http://www.vupen.com/english/advisories/2006/4131
- https://exchange.xforce.ibmcloud.com/vulnerabilities/29684
Products affected by CVE-2006-5446
-
cpe:2.3:a:casinosoft:casino_script:3.2