Lumension® Endpoint Intelligence Center

Intelligence Center » Browse All Vulnerabilities » CVE-2006-3161

Overview

Vulnerability Score 7.5 7.5
CVE Id CVE-2006-3161
Last Modified 05 Sep 2008 05:06:23
Published 22 Jun 2006 06:06:00
Confidentiality Impact PARTIAL PARTIAL
Integrity Impact PARTIAL PARTIAL
Availability Impact PARTIAL PARTIAL
Access Vector NETWORK
Access Complexity LOW
Authentication NONE

CVE-2006-3161

Summary

SQL injection vulnerability in misc.php in SaphpLesson 1.1 and earlier allows remote attackers to execute arbitrary SQL commands via the action parameter.

Vulnerable Systems

Application

  • Saphplesson 1.1


References

BID - 18501

BUGTRAQ - 20060619 SaphpLesson<<--1.1 "misc.php" SQL injection

SECTRACK - 1016342

XF - saphplesson-misc-sql-injection(27304)

SREASON - 1123


Last Updated: 27 May 2016 10:42:54