Lumension® Endpoint Intelligence Center

Intelligence Center » Browse All Vulnerabilities » CVE-2006-0809

Overview

Vulnerability Score 7.5 7.5
CVE Id CVE-2006-0809
Last Modified 05 Sep 2008 05:00:16
Published 20 Feb 2006 09:02:00
Confidentiality Impact PARTIAL PARTIAL
Integrity Impact PARTIAL PARTIAL
Availability Impact PARTIAL PARTIAL
Access Vector NETWORK
Access Complexity LOW
Authentication NONE

CVE-2006-0809

Summary

Multiple SQL injection vulnerabilities in Skate Board 0.9 allow remote attackers to execute arbitrary SQL commands via the (1) usern parameter in (a) sendpass.php, and the (2) usern and (3) passwd parameters and (4) sf_cookie cookie in (b) login.php and (c) logged.php.

Vulnerable Systems

Application

  • Skate Board 0.9


References

OSVDB - 23303

OSVDB - 23302

OSVDB - 23301

MISC - http://evuln.com/vulns/84/summary.html

XF - skateboard-authentication-bypass(24779)

XF - skateboard-sendpass-sql-injection(24778)

BID - 16936

BUGTRAQ - 20060303 [eVuln] Skate Board Multimple Vulnerabilities

SREASON - 540

SECUNIA - 18978


Last Updated: 27 May 2016 10:41:48