CVE-2006-2416

Published May 16, 2006

Last updated 3 months ago

CVSS info 5.1

Overview

Description: SQL injection vulnerability in class2.php in e107 0.7.2 and earlier allows remote attackers to execute arbitrary SQL commands via a cookie as defined in $pref['cookie_name'].
Source: cve@mitre.org
NVD status: Modified

Risk scores

CVSS 2.0

Type: Primary
Base score: 5.1
Impact score: 6.4
Exploitability score: 4.9
Vector string: AV:N/AC:H/Au:N/C:P/I:P/A:P

Weaknesses

nvd@nist.gov: CWE-89

Hype score: Not currently trending

Evaluator

Comment: -
Impact: -
Solution: -

Configurations

[
  {
    "nodes": [
      {
        "negate": false,
        "cpeMatch": [
          {
            "criteria": "cpe:2.3:a:e107:e107:0.6_10:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "18C34EB0-7685-4346-81A2-371C1F19F6AD"
          },
          {
            "criteria": "cpe:2.3:a:e107:e107:0.6_11:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "AB26A2A4-B0DE-4130-AA5F-76D5394A0614"
          },
          {
            "criteria": "cpe:2.3:a:e107:e107:0.6_12:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "90909932-AD39-4648-8621-5866F0C4AB12"
          },
          {
            "criteria": "cpe:2.3:a:e107:e107:0.6_13:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "37F208E9-3C39-4D00-B1E0-5CD0B315E740"
          },
          {
            "criteria": "cpe:2.3:a:e107:e107:0.6_14:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "27C7402F-54C9-4FDA-B181-85941DDC7010"
          },
          {
            "criteria": "cpe:2.3:a:e107:e107:0.6_15:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "061B1AF2-2BA7-49CB-9F8B-91BF5D5B0BF3"
          },
          {
            "criteria": "cpe:2.3:a:e107:e107:0.6_15a:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "4F77F5E4-8636-41F5-9A80-055CC0FC0346"
          },
          {
            "criteria": "cpe:2.3:a:e107:e107:0.7:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "70AB914E-D616-45D2-A451-1C247B8B6E4C"
          },
          {
            "criteria": "cpe:2.3:a:e107:e107:0.7.1:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "CA03C1AC-97EA-47ED-9558-A7CA48420AB2"
          },
          {
            "criteria": "cpe:2.3:a:e107:e107:0.7.2:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "32695A82-B042-46B7-9CB4-20F3446E0C9E"
          },
          {
            "criteria": "cpe:2.3:a:e107:e107:0.545:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "8DDD8B3B-8580-4624-8D77-E3FD97DFF4A6"
          },
          {
            "criteria": "cpe:2.3:a:e107:e107:0.554:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "6454D949-83A2-4F69-92E1-BBCD84F21BC2"
          },
          {
            "criteria": "cpe:2.3:a:e107:e107:0.555_beta:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "CC274184-AD8E-4BC2-BC6A-4E64F354BFFD"
          },
          {
            "criteria": "cpe:2.3:a:e107:e107:0.603:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "F8692341-8DF2-4943-853A-4AAF1F313914"
          },
          {
            "criteria": "cpe:2.3:a:e107:e107:0.616:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "B5CB33E9-9AB8-482A-A196-768A2085A49C"
          },
          {
            "criteria": "cpe:2.3:a:e107:e107:0.617:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "12BD5CAD-0EB8-48F2-AF80-510584A83446"
          },
          {
            "criteria": "cpe:2.3:a:e107:e107:0.6171:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "AD8CD2A8-C8E8-4A5F-8355-6DF45C9DF45C"
          },
          {
            "criteria": "cpe:2.3:a:e107:e107:0.6175:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "DF75A192-81C1-4F58-A660-7EFE4F33E58B"
          }
        ],
        "operator": "OR"
      }
    ]
  }
]

Overview

Risk scores

CVSS 2.0

Weaknesses

Social media

Evaluator

Configurations

References