CyberSec.Space Logo
CVEブラウザに戻る

CVE-2006-5926

HIGH
7.5
CVSS Severity Score
EPSS Score0.1520%
EPSS Percentile39.73th
Published2006年11月16日
Last Modified2026年4月23日

Vulnerability Description

Multiple SQL injection vulnerabilities in mail.php in Vallheru before 1.0.7 allow remote attackers to execute arbitrary SQL commands via the (1) id or (2) to parameters. NOTE: some of these details are obtained from third party information.

Affected Platforms (CPE)

📦
Vallheru

Vallheru

= 1.0.6

References & Advisories

🔗 http://secunia.com/advisories/22812
🔗 http://sourceforge.net/project/shownotes.php?release_id=463228
🔗 http://vallheru.svn.sourceforge.net/viewvc/vallheru/vallheru/mail.php?r1=782&r2=781&pathrev=782
🔗 http://www.securityfocus.com/bid/21051
🔗 http://www.vupen.com/english/advisories/2006/4493
🔗 https://exchange.xforce.ibmcloud.com/vulnerabilities/30255
🔗 http://secunia.com/advisories/22812
🔗 http://sourceforge.net/project/shownotes.php?release_id=463228

関連する脆弱性情報

CVE-2007-140810.0

Multiple vulnerabilities in (1) bank.php, (2) landfill.php, (3) outposts.php, (4) tribes.php, (5) house.php, (6) tribearmor.php, (...

CVE-2006-011910.0

Multiple unspecified vulnerabilities in IBM Lotus Notes and Domino Server before 6.5.5 have unknown impact and attack vectors, due...

CVE-2006-012810.0

Buffer overflow in the IMAP service of Rockliffe MailSite before 6.1.22.1 allows remote attackers to have an unknown impact via un...

CVE-2006-028310.0

Unspecified vulnerability in Oracle Database Server 10.1.0.4.2, Application Server 10.1.2.0.2, and Collaboration Suite Release 2, ...