CVE-2006-6354

Published Dec 7, 2006

Last updated 6 years ago

CVSS info 7.5

Overview

Description: Multiple SQL injection vulnerabilities in detail.asp in DuWare DuNews allow remote attackers to execute arbitrary SQL commands via the (1) iNews, (2) iType, or (3) Action parameter. NOTE: the iType parameter in type.asp is covered by CVE-2005-3976.
Source: cve@mitre.org
NVD status: Modified

Risk scores

CVSS 2.0

Type: Primary
Base score: 7.5
Impact score: 6.4
Exploitability score: 10
Vector string: AV:N/AC:L/Au:N/C:P/I:P/A:P

Weaknesses

nvd@nist.gov: NVD-CWE-Other

Hype score: Not currently trending

Configurations

[
  {
    "nodes": [
      {
        "negate": false,
        "cpeMatch": [
          {
            "criteria": "cpe:2.3:a:duware:duamazon:3.0:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "1B3BE2C1-4C07-48B9-A669-F39857CF2E7E"
          },
          {
            "criteria": "cpe:2.3:a:duware:duamazon:3.1:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "FED29566-25BE-4983-8C36-4A1D3EEF3516"
          },
          {
            "criteria": "cpe:2.3:a:duware:duarticle:1.0:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "7A0DCB23-678A-4255-9717-F8650E0DC3F1"
          },
          {
            "criteria": "cpe:2.3:a:duware:duarticle:1.1:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "5BB6A054-E639-49A5-AF6E-27FC62FF8EC4"
          },
          {
            "criteria": "cpe:2.3:a:duware:duclassified:4.0:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "7A32C8E1-A205-4293-B1EA-300136CC7826"
          },
          {
            "criteria": "cpe:2.3:a:duware:duclassified:4.1:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "F24704F1-3211-4320-8B30-BCB4E2A0AD0E"
          },
          {
            "criteria": "cpe:2.3:a:duware:duclassified:4.2:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "8B010062-02BA-4402-86B2-D069EA5C4E62"
          },
          {
            "criteria": "cpe:2.3:a:duware:dudirectory:3.0:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "AAE96F41-27C4-48B8-95A5-9C2559C116FC"
          },
          {
            "criteria": "cpe:2.3:a:duware:dudirectory:3.1:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "FA35AB30-1814-4911-A3D7-F986C44E0B78"
          },
          {
            "criteria": "cpe:2.3:a:duware:dudirectory_pro:3.0:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "DC866B22-DBC4-4A33-8751-4A2CE175D02D"
          },
          {
            "criteria": "cpe:2.3:a:duware:dudirectory_pro:3.1:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "A2A383DF-FC07-4A86-8B4B-0369C58DE263"
          },
          {
            "criteria": "cpe:2.3:a:duware:dudirectory_pro_sql:3.0:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "7EB2170A-484C-4388-94D6-F3018710561F"
          },
          {
            "criteria": "cpe:2.3:a:duware:dudirectory_pro_sql:3.1:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "50BB7B94-C209-443A-84F3-4812B1AA403E"
          },
          {
            "criteria": "cpe:2.3:a:duware:dudownload:1.0:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "563FBC8D-1F76-469D-9EBA-0F72C7031F76"
          },
          {
            "criteria": "cpe:2.3:a:duware:dudownload:1.1:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "2D01D83B-E504-417B-A9D5-38CF615B8BAB"
          },
          {
            "criteria": "cpe:2.3:a:duware:dugallery:3.0:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "D61C5FBA-2985-42CB-837C-04CD6A6A2886"
          },
          {
            "criteria": "cpe:2.3:a:duware:dugallery:3.1:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "A41A70C5-B3D5-4F7F-98E7-90F48C66DE55"
          },
          {
            "criteria": "cpe:2.3:a:duware:dugallery:3.2:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "44E82B96-C80D-4B49-B45E-CC2FA53FADD7"
          },
          {
            "criteria": "cpe:2.3:a:duware:dugallery:3.3:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "226C1211-4598-4FCF-9C3B-B3175FD3ECBE"
          },
          {
            "criteria": "cpe:2.3:a:duware:dunews:1.0:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "6F183985-8F71-4E78-86E8-48B962A1EB67"
          },
          {
            "criteria": "cpe:2.3:a:duware:dunews:1.1:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "1F62C8A9-7F36-474B-90E6-3B575BC99E05"
          },
          {
            "criteria": "cpe:2.3:a:duware:dupaypal:3.0:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "AE893D34-DC7F-40FA-9197-E8B627B70EB8"
          },
          {
            "criteria": "cpe:2.3:a:duware:dupaypal:3.1:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "A1A3906D-2606-4E5A-9AB3-00609152376E"
          },
          {
            "criteria": "cpe:2.3:a:duware:dupaypal_pro:3.0:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "D19A6A59-0CA1-4A86-8D0F-36C53A036C95"
          },
          {
            "criteria": "cpe:2.3:a:duware:dupaypal_pro:3.1:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "F8152849-FE16-43DD-AF8C-417D8D1D2309"
          }
        ],
        "operator": "OR"
      }
    ]
  }
]

Overview

Risk scores

CVSS 2.0

Weaknesses

Social media

Configurations

References