Lumension® Endpoint Intelligence Center

Intelligence Center » Browse All Vulnerabilities » CVE-2006-2853

Overview

Vulnerability Score 7.5 7.5
CVE Id CVE-2006-2853
Last Modified 07 Mar 2011 09:37:08
Published 06 Jun 2006 04:06:00
Confidentiality Impact PARTIAL PARTIAL
Integrity Impact PARTIAL PARTIAL
Availability Impact PARTIAL PARTIAL
Access Vector NETWORK
Access Complexity LOW
Authentication NONE

CVE-2006-2853

Summary

SQL injection vulnerability in content.php in abarcar Realty Portal 5.1.5 allows remote attackers to execute arbitrary SQL commands via the cat parameter.

Vulnerable Systems

Application

  • Abarcar Realty Portal 5.1.5


References

XF - abarcar-realty-portal-content-sql-injection(26993)

VUPEN - ADV-2006-2194

BID - 18218

MISC - http://www.security.nnov.ru/Mdocument929.html

OSVDB - 26226

SECUNIA - 20504

MISC - http://downloads.securityfocus.com/vulnerabilities/exploits/abarcar_sql_poc.txt


Last Updated: 27 May 2016 10:42:46