Lumension® Endpoint Intelligence Center

Intelligence Center » Browse All Vulnerabilities » CVE-2006-0221


Vulnerability Score 7.5 7.5
CVE Id CVE-2006-0221
Last Modified 05 Sep 2008 04:58:40
Published 16 Jan 2006 04:03:00
Confidentiality Impact PARTIAL PARTIAL
Integrity Impact PARTIAL PARTIAL
Availability Impact PARTIAL PARTIAL
Access Vector NETWORK
Access Complexity LOW
Authentication NONE



SQL injection vulnerability in index.asp in the Admin Panel in Dragon Design Services Network (DDSN) cm3 content manager (CM3CMS) allows remote attackers to execute arbitrary SQL commands via the (1) username or (2) password.

Vulnerable Systems


  • Ddsn Cm3cms


XF - cm3-login-sql-injection(24266)

BID - 16231

BUGTRAQ - 20060113 DDSN CMS Admin Panel SQL Injection Vulnerability

OSVDB - 22696

Last Updated: 27 May 2016 10:41:34