Lumension® Endpoint Intelligence Center

Intelligence Center » Browse All Vulnerabilities » CVE-2006-1710

Overview

Vulnerability Score 7.6 7.6
CVE Id CVE-2006-1710
Last Modified 07 Mar 2011 09:33:38
Published 11 Apr 2006 02:06:00
Confidentiality Impact COMPLETE COMPLETE
Integrity Impact COMPLETE COMPLETE
Availability Impact COMPLETE COMPLETE
Access Vector NETWORK
Access Complexity HIGH
Authentication NONE

CVE-2006-1710

Summary

SQL injection vulnerability in admin.php in Design Nation DNGuestbook 2.0 allows remote attackers to execute arbitrary SQL commands via the (1) email and (2) id parameters.

Vulnerable Systems

Application

  • Design Nation Dnguestbook 2.0


References

XF - dnguestbook-admin-sql-injection(25699)

VUPEN - ADV-2006-1299

BID - 17435

SECUNIA - 19601

MILW0RM - 1653


Last Updated: 27 May 2016 10:42:10