Lumension® Endpoint Intelligence Center

Intelligence Center » Browse All Vulnerabilities » CVE-2006-0729

Overview

Vulnerability Score 7.5 7.5
CVE Id CVE-2006-0729
Last Modified 07 Mar 2011 09:30:42
Published 16 Feb 2006 06:02:00
Confidentiality Impact PARTIAL PARTIAL
Integrity Impact PARTIAL PARTIAL
Availability Impact PARTIAL PARTIAL
Access Vector NETWORK
Access Complexity LOW
Authentication NONE

CVE-2006-0729

Summary

SQL injection vulnerability in functions.php in Teca Diary PE 1.0 allows remote attackers to execute arbitrary SQL commands via the (1) yy, (2) mm, and (3) dd parameters.

Vulnerable Systems

Application

  • Teca Scripts Teca Diary Personal 1.0


References

XF - tecadiary-functions-sql-injection(24643)

VUPEN - ADV-2006-0615

MISC - http://www.evuln.com/vulns/75/summary.html

SECTRACK - 1015674

SECUNIA - 18876

BID - 16686

BUGTRAQ - 20060223 [eVuln] Teca Diary PE SQL Injection Vulnerability

SREASON - 477


Last Updated: 27 May 2016 10:41:46