Lumension® Endpoint Intelligence Center

Intelligence Center » Browse All Vulnerabilities » CVE-2006-1708

Overview

Vulnerability Score 7.5 7.5
CVE Id CVE-2006-1708
Last Modified 07 Mar 2011 09:33:37
Published 11 Apr 2006 06:02:00
Confidentiality Impact PARTIAL PARTIAL
Integrity Impact PARTIAL PARTIAL
Availability Impact PARTIAL PARTIAL
Access Vector NETWORK
Access Complexity LOW
Authentication NONE

CVE-2006-1708

Summary

SQL injection vulnerability in member.php in Clansys 1.1 allows remote attackers to execute arbitrary SQL commands via the showid parameter in the member page to index.php.

Vulnerable Systems

Application

  • Clansys 1.1


References

VUPEN - ADV-2006-1295

SECUNIA - 19609

XF - clansys-index-sql-injection(25746)

BID - 17456

SECTRACK - 1015935

MILW0RM - 1662


Last Updated: 27 May 2016 10:42:10