NVD

Id
64566  
Name
CVE-2006-5991  
Description
Multiple SQL injection vulnerabilities in wwweb concepts CactuShop allow remote attackers to execute arbitrary SQL commands via the (1) prodtype parameter in prodtype.asp and the (2) product parameter in product.asp.  
Reject
 
CVSS Version
2  
CVSS Score
7.5  
Severity
High  
CVSS Base Score
7.5  
CVSS Impact Subscore
6.4  
CVSS Exploit Subscore
10  
CVSS Vector
(AV:N/AC:L/Au:N/C:P/I:P/A:P)  
Pub Date
2016-12-20  
Published
2006-11-20  
Modified Date
2011-03-07  
Seq
2006-5991  

Actions

Related NVD References

Id NVD Id NVD No. Reference Actions
336970 64566 CVE-2006-5991 http://aria-security.net/advisory/WWWeb%20Cocepts.txt  View
336971 64566 CVE-2006-5991 1887  View
336972 64566 CVE-2006-5991 20061113 WWWeb Cocepts SQL Injection  View
336973 64566 CVE-2006-5991 21076  View
336974 64566 CVE-2006-5991 ADV-2006-4528  View
336975 64566 CVE-2006-5991 wwweb-prodtype-product-sql-injection(30261 View

Related JVN

Id Name Title Summary Cveinfo Name Cveinfo Id Nvdinfo Name Nvdinfo Id Cvssv2 Cvssv3 Jvnurl Published Date Last Updated Date Actions
59312 JVNDB-2006-001578 wwWeb concepts CactuShop における SQL インジェクションの脆弱性 wwWeb concepts CactuShop には、SQL インジェクションの脆弱性が存在します。 CVE-2006-5991 22093 CVE-2006-5991 64566 7.5 http://jvndb.jvn.jp/ja/contents/2006/JVNDB-2006-001578.html 2006-11-20 2012-06-26 View