Lumension® Endpoint Intelligence Center

Intelligence Center » Browse All Vulnerabilities » CVE-2006-0087

Overview

Vulnerability Score 7.5 7.5
CVE Id CVE-2006-0087
Last Modified 07 Mar 2011 09:29:18
Published 05 Jan 2006 06:03:00
Confidentiality Impact PARTIAL PARTIAL
Integrity Impact PARTIAL PARTIAL
Availability Impact PARTIAL PARTIAL
Access Vector NETWORK
Access Complexity LOW
Authentication NONE

CVE-2006-0087

Summary

SQL injection vulnerability in (1) pages.php and (2) detail.php in Lizard Cart CMS 1.04 allows remote attackers to execute arbitrary SQL commands via the id parameter.

Vulnerable Systems

Application

  • Lizard Cart Cms 1.0.4


References

VUPEN - ADV-2006-0029

BID - 16140

BUGTRAQ - 20060104 [eVuln] Lizard Cart CMS SQL Injection Vulnerability

SECUNIA - 18297

OSVDB - 22200

OSVDB - 22199

MISC - http://www.evuln.com/vulns/12/summary.html

SECTRACK - 1015435

SREASON - 314


Last Updated: 27 May 2016 10:41:31