CVE-2006-4142

Published Aug 14, 2006

Last updated 3 months ago

CVSS info 7.5

Overview

Description: SQL injection vulnerability in extra/online.php in Virtual War (VWar) 1.5.0 R14 and earlier allows remote attackers to execute arbitrary SQL commands via the n parameter.
Source: cve@mitre.org
NVD status: Modified

Risk scores

CVSS 2.0

Type: Primary
Base score: 7.5
Impact score: 6.4
Exploitability score: 10
Vector string: AV:N/AC:L/Au:N/C:P/I:P/A:P

Weaknesses

nvd@nist.gov: NVD-CWE-Other

Hype score: Not currently trending

Configurations

[
  {
    "nodes": [
      {
        "negate": false,
        "cpeMatch": [
          {
            "criteria": "cpe:2.3:a:vwar:virtual_war:1.5.0:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "46EB68E8-9E4D-4571-8A2F-B5FDE38F66C6"
          },
          {
            "criteria": "cpe:2.3:a:vwar:virtual_war:1.5.0_r1:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "B8649B70-E499-48B9-BEC0-40A5CBA965AB"
          },
          {
            "criteria": "cpe:2.3:a:vwar:virtual_war:1.5.0_r2:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "259BA0C6-2604-47F9-9F3F-9C1723D92B9F"
          },
          {
            "criteria": "cpe:2.3:a:vwar:virtual_war:1.5.0_r3:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "88E1C96A-E919-4217-9740-7A0E091FB173"
          },
          {
            "criteria": "cpe:2.3:a:vwar:virtual_war:1.5.0_r4:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "6EF2E5CD-19A3-4B28-B0DF-A9E78FD9E00D"
          },
          {
            "criteria": "cpe:2.3:a:vwar:virtual_war:1.5.0_r5:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "EB8E151E-B445-476A-A984-EDB2912D5377"
          },
          {
            "criteria": "cpe:2.3:a:vwar:virtual_war:1.5.0_r6:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "72A272DC-9B30-417A-9C77-67A7C35063C0"
          },
          {
            "criteria": "cpe:2.3:a:vwar:virtual_war:1.5.0_r7:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "4F12BA77-5F39-44B3-A18F-69C8019FE276"
          },
          {
            "criteria": "cpe:2.3:a:vwar:virtual_war:1.5.0_r8:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "966D4C0E-E82C-4BD2-AE42-F56A4B137CEC"
          },
          {
            "criteria": "cpe:2.3:a:vwar:virtual_war:1.5.0_r9:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "E4395243-2E0A-4DBA-90AD-4D74491A0E21"
          },
          {
            "criteria": "cpe:2.3:a:vwar:virtual_war:1.5.0_r10:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "331164B3-F2B7-4D74-8F72-6D183A4CE5FE"
          },
          {
            "criteria": "cpe:2.3:a:vwar:virtual_war:1.5.0_r11:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "08559C71-79AA-4051-98AB-8DABA0571A13"
          },
          {
            "criteria": "cpe:2.3:a:vwar:virtual_war:1.5.0_r12:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "74736F85-D744-4999-B4BB-09A766EFDF9B"
          },
          {
            "criteria": "cpe:2.3:a:vwar:virtual_war:1.5.0_r13:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "58F1F787-DBB6-4CE7-ACE3-8BCE78671DD8"
          },
          {
            "criteria": "cpe:2.3:a:vwar:virtual_war:1.5.0_r14:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "26A1A453-6181-4594-A71E-50DC6DF6EB20"
          }
        ],
        "operator": "OR"
      }
    ]
  }
]

Overview

Risk scores

CVSS 2.0

Weaknesses

Social media

Configurations

References