CVE-2006-3150

CVE-2006-3150

EPSS 1.3%

SQL injection vulnerability in index.php in CavoxCms 1.0.16 and earlier allows remote attackers to execute arbitrary SQL commands via the page parameter.

Productos afectados

¿Quieres saber si tu infraestructura está expuesta a esto?

Hablar con TrueHacking →

Referencias

http://pridels0.blogspot.com/2006/06/cavoxcms-sql-injection-vuln.html http://secunia.com/advisories/20600 https://exchange.xforce.ibmcloud.com/vulnerabilities/27249 http://www.osvdb.org/26658 http://www.securityfocus.com/bid/18533 http://www.vupen.com/english/advisories/2006/2433