CVE-2006-3481

Sažetak

Multiple SQL injection vulnerabilities in Joomla! before 1.0.10 allow remote attackers to execute arbitrary SQL commands via unspecified parameters involving the (1) "Remember Me" function, (2) "Related Items" module, and the (3) "Weblinks submission".

Reference

http://secunia.com/advisories/20874
http://www.joomla.org/content/view/1510/74/
http://www.joomla.org/content/view/1511/78/
http://www.osvdb.org/26910
http://www.osvdb.org/26911
http://www.osvdb.org/26912
http://www.securityfocus.com/bid/18742
http://www.vupen.com/english/advisories/2006/2608
https://exchange.xforce.ibmcloud.com/vulnerabilities/27520

CVSS

Base:	7.5
Impact:	6.4
Exploitability:	10.0

Pristup

Vektor	Složenost	Autentikacija
NETWORK	LOW	NONE

Impact

Povjerljivost	Cjelovitost	Dostupnost
PARTIAL	PARTIAL	PARTIAL

CVSS vektor

AV:N/AC:L/Au:N/C:P/I:P/A:P

Zadnje važnije ažuriranje

20-07-2017 - 01:32

Objavljeno

10-07-2006 - 20:05