CVE

Id
18443  
CVE No.
CVE-2006-2339  
Status
Candidate  
Description
SQL injection vulnerability in index.php in evoTopsites 2.x and evoTopsites Pro 2.x allows remote attackers to execute arbitrary SQL commands via the (1) cat_id and (2) id parameters.  
Phase
Assigned (20060511)  
Votes
None (candidate not yet proposed)  
Comments
 

Actions

Related CVE References

Id CVE Id CVE No. Reference Actions
160195 18443 CVE-2006-2339 MISC:http://www.hamid.ir/security/evotopsites.txt  View
160196 18443 CVE-2006-2339 BID:17893  View
160197 18443 CVE-2006-2339 URL:http://www.securityfocus.com/bid/17893  View
160198 18443 CVE-2006-2339 VUPEN:ADV-2006-1689  View
160199 18443 CVE-2006-2339 URL:http://www.vupen.com/english/advisories/2006/1689  View
160200 18443 CVE-2006-2339 OSVDB:25440  View
160201 18443 CVE-2006-2339 URL:http://www.osvdb.org/25440  View
160202 18443 CVE-2006-2339 SECTRACK:1016062  View
160203 18443 CVE-2006-2339 URL:http://securitytracker.com/id?1016062  View
160204 18443 CVE-2006-2339 SECUNIA:19989  View
160205 18443 CVE-2006-2339 URL:http://secunia.com/advisories/19989  View
160206 18443 CVE-2006-2339 XF:evotopsites-index-sql-injection(26328)  View

Related JVN

Id JVN No. Title Summary CVE No. CVE Id CVSS_v2 CVSS_v3 JVN URL Actions
58081 JVNDB-2006-000277 Symantec Enterprise Firewall における内部 IP アドレス開示の脆弱性 Symantec Enterprise Firewall において、HTTP プロキシ機能には内部ネットワークの IP アドレスを隠蔽している場合においても、特定のリクエストを処理するとエラーレスポンスに内部 IP アドレスを表示する脆弱性が存在します。 CVE-2006-2341 18443 5 http://jvndb.jvn.jp/ja/contents/2006/JVNDB-2006-000277.html  View