CVEDB API

Vulnerabilities

By Date
Known Exploited
Advanced Search

Vulnerable Software

Vendors
Products

Vulnerability Details CVE-2006-6110

Multiple SQL injection vulnerabilities in an unspecified BPG-InfoTech Content Management System product allow remote attackers to execute arbitrary SQL commands via the (1) vjob parameter in publications_list.asp or (2) InfoID parameter in publication_view.asp.

Exploit prediction scoring system (EPSS) score

EPSS Score 0.005

EPSS Ranking 63.9%

CVSS Severity

CVSS v2 Score 7.5

References

http://aria-security.net/advisory/bpg.txt
http://securityreason.com/securityalert/1915
http://www.securityfocus.com/archive/1/451537/100/100/threaded
http://aria-security.net/advisory/bpg.txt
http://securityreason.com/securityalert/1915
http://www.securityfocus.com/archive/1/451537/100/100/threaded

Products affected by CVE-2006-6110

Bpg-Infotech » Content Management System » Version: Any

cpe:2.3:a:bpg-infotech:content_management_system:*

Vulnerabilities

Vulnerable Software

Vulnerability Details CVE-2006-6110

Products

Pricing

Contact Us