CVEDB API

Vulnerabilities

By Date
Known Exploited
Advanced Search

Vulnerable Software

Vendors
Products

Vulnerability Details CVE-2006-6195

Multiple SQL injection vulnerabilities in Fixit iDMS Pro Image Gallery allow remote attackers to execute arbitrary SQL commands via the (1) show_id or (2) parentid parameter to (a) filelist.asp, or the (3) fid parameter to (b) showfile.asp.

Exploit prediction scoring system (EPSS) score

EPSS Score 0.006

EPSS Ranking 68.4%

CVSS Severity

CVSS v2 Score 7.5

References

http://securitytracker.com/id?1017281
http://www.aria-security.com/forum/showthread.php?t=39
http://www.securityfocus.com/archive/1/452567/100/0/threaded
http://www.securityfocus.com/bid/21282
https://exchange.xforce.ibmcloud.com/vulnerabilities/30513
http://securitytracker.com/id?1017281
http://www.aria-security.com/forum/showthread.php?t=39
http://www.securityfocus.com/archive/1/452567/100/0/threaded
http://www.securityfocus.com/bid/21282
https://exchange.xforce.ibmcloud.com/vulnerabilities/30513

Products affected by CVE-2006-6195

Fixit Knowledge Solutions » Idms Pro Image Gallery » Version: Any

cpe:2.3:a:fixit_knowledge_solutions:idms_pro_image_gallery:*

Vulnerabilities

Vulnerable Software

Vulnerability Details CVE-2006-6195

Products

Pricing

Contact Us