Vulnerability Details CVE-2006-5723
SQL injection vulnerability in DataparkSearch Engine 4.42 and earlier allows remote attackers to execute arbitrary SQL commands via a malformed hostname in a URL.
Exploit prediction scoring system (EPSS) score
EPSS Score 0.005
EPSS Ranking 64.3%
CVSS Severity
CVSS v2 Score 7.5
References
- http://www.dataparksearch.org/ChangeLog
- http://www.securityfocus.com/bid/20872
- http://www.vupen.com/english/advisories/2006/4311
- https://exchange.xforce.ibmcloud.com/vulnerabilities/29979
- http://www.dataparksearch.org/ChangeLog
- http://www.securityfocus.com/bid/20872
- http://www.vupen.com/english/advisories/2006/4311
- https://exchange.xforce.ibmcloud.com/vulnerabilities/29979
Products affected by CVE-2006-5723
-
cpe:2.3:a:dataparksearch:dataparksearch:4.16
-
cpe:2.3:a:dataparksearch:dataparksearch:4.17
-
cpe:2.3:a:dataparksearch:dataparksearch:4.18
-
cpe:2.3:a:dataparksearch:dataparksearch:4.19
-
cpe:2.3:a:dataparksearch:dataparksearch:4.20
-
cpe:2.3:a:dataparksearch:dataparksearch:4.21
-
cpe:2.3:a:dataparksearch:dataparksearch:4.22
-
cpe:2.3:a:dataparksearch:dataparksearch:4.23
-
cpe:2.3:a:dataparksearch:dataparksearch:4.24
-
cpe:2.3:a:dataparksearch:dataparksearch:4.25
-
cpe:2.3:a:dataparksearch:dataparksearch:4.26
-
cpe:2.3:a:dataparksearch:dataparksearch:4.27
-
cpe:2.3:a:dataparksearch:dataparksearch:4.28
-
cpe:2.3:a:dataparksearch:dataparksearch:4.29
-
cpe:2.3:a:dataparksearch:dataparksearch:4.30
-
cpe:2.3:a:dataparksearch:dataparksearch:4.31
-
cpe:2.3:a:dataparksearch:dataparksearch:4.32
-
cpe:2.3:a:dataparksearch:dataparksearch:4.33
-
cpe:2.3:a:dataparksearch:dataparksearch:4.34
-
cpe:2.3:a:dataparksearch:dataparksearch:4.35
-
cpe:2.3:a:dataparksearch:dataparksearch:4.36
-
cpe:2.3:a:dataparksearch:dataparksearch:4.37
-
cpe:2.3:a:dataparksearch:dataparksearch:4.42