CVEDB API

Vulnerabilities

By Date
Known Exploited
Advanced Search

Vulnerable Software

Vendors
Products

X-Scripts: >> X-Statistics >> 1.10 Security Vulnerabilities

CVE-2006-3959

SQL injection vulnerability in protect.php in X-Scripts X-Protection 1.10, with magic_quotes_gpc disabled, allows remote attackers to execute arbitrary SQL commands via the (1) username and (2) password parameter.

CVSS Score

7.5

EPSS Score

0.006

Published

2006-08-01

Page 1

Vulnerabilities

Vulnerable Software

X-Scripts: >> X-Statistics >> 1.10 Security Vulnerabilities

Products

Pricing

Contact Us