Vulnerability Details CVE-2006-5885
SQL injection vulnerability in Products.asp in NuStore 1.0 allows remote attackers to execute arbitrary SQL commands via the SubCatagoryID parameter.
Exploit prediction scoring system (EPSS) score
EPSS Score 0.018
EPSS Ranking 82.0%
CVSS Severity
CVSS v2 Score 7.5
References
- http://secunia.com/advisories/22829
- http://securityreason.com/securityalert/1856
- http://securitytracker.com/id?1017216
- http://www.securityfocus.com/archive/1/451334/100/0/threaded
- http://www.securityfocus.com/bid/21019
- http://www.vupen.com/english/advisories/2006/4472
- https://exchange.xforce.ibmcloud.com/vulnerabilities/30195
- https://www.exploit-db.com/exploits/2756
- http://secunia.com/advisories/22829
- http://securityreason.com/securityalert/1856
- http://securitytracker.com/id?1017216
- http://www.securityfocus.com/archive/1/451334/100/0/threaded
- http://www.securityfocus.com/bid/21019
- http://www.vupen.com/english/advisories/2006/4472
- https://exchange.xforce.ibmcloud.com/vulnerabilities/30195
- https://www.exploit-db.com/exploits/2756
Products affected by CVE-2006-5885
-
cpe:2.3:a:dynamic_dataworx:nustore:1.0