Lumension® Endpoint Intelligence Center

Intelligence Center » Browse All Vulnerabilities » CVE-2006-3150

Overview

Vulnerability Score 7.5 7.5
CVE Id CVE-2006-3150
Last Modified 21 Jul 2013 01:51:42
Published 22 Jun 2006 06:06:00
Confidentiality Impact PARTIAL PARTIAL
Integrity Impact PARTIAL PARTIAL
Availability Impact PARTIAL PARTIAL
Access Vector NETWORK
Access Complexity LOW
Authentication NONE

CVE-2006-3150

Summary

SQL injection vulnerability in index.php in CavoxCms 1.0.16 and earlier allows remote attackers to execute arbitrary SQL commands via the page parameter.

Vulnerable Systems

Application

  • Cavoxcms 1.0.16


References

XF - cavoxcms-index-sql-injection(27249)

VUPEN - ADV-2006-2433

BID - 18533

OSVDB - 26658

SECUNIA - 20600

MISC - http://pridels0.blogspot.com/2006/06/cavoxcms-sql-injection-vuln.html


Last Updated: 27 May 2016 10:42:54