Lumension® Endpoint Intelligence Center

Intelligence Center » Browse All Vulnerabilities » CVE-2006-0943

Overview

Vulnerability Score 7.5 7.5
CVE Id CVE-2006-0943
Last Modified 07 Mar 2011 09:31:25
Published 28 Feb 2006 09:02:00
Confidentiality Impact PARTIAL PARTIAL
Integrity Impact PARTIAL PARTIAL
Availability Impact PARTIAL PARTIAL
Access Vector NETWORK
Access Complexity LOW
Authentication NONE

CVE-2006-0943

Summary

SQL injection vulnerability in the sondages module in index.php in PwsPHP 1.2.3 allows remote attackers to execute arbitrary SQL commands via the id parameter to index.php.

Vulnerable Systems

Application

  • Pwsphp 1.2.3


References

VUPEN - ADV-2006-0748

BUGTRAQ - 20060226 Re: PwsPHP Injection SQL on Index.php

BUGTRAQ - 20060225 PwsPHP Injection SQL on Index.php

CONFIRM - http://www.pwsphp.com/index.php?mod=news&ac=commentaires&id=278

SECTRACK - 1015684

SREASON - 496


Last Updated: 27 May 2016 10:41:52