CyberSec.Space Logo
返回 CVE 瀏覽器

CVE-2006-5926

HIGH
7.5
CVSS Severity Score
EPSS Score0.1520%
EPSS Percentile39.73th
Published2006年11月16日
Last Modified2026年4月23日

Vulnerability Description

Multiple SQL injection vulnerabilities in mail.php in Vallheru before 1.0.7 allow remote attackers to execute arbitrary SQL commands via the (1) id or (2) to parameters. NOTE: some of these details are obtained from third party information.

Affected Platforms (CPE)

📦
Vallheru

Vallheru

= 1.0.6

References & Advisories

🔗 http://secunia.com/advisories/22812
🔗 http://sourceforge.net/project/shownotes.php?release_id=463228
🔗 http://vallheru.svn.sourceforge.net/viewvc/vallheru/vallheru/mail.php?r1=782&r2=781&pathrev=782
🔗 http://www.securityfocus.com/bid/21051
🔗 http://www.vupen.com/english/advisories/2006/4493
🔗 https://exchange.xforce.ibmcloud.com/vulnerabilities/30255
🔗 http://secunia.com/advisories/22812
🔗 http://sourceforge.net/project/shownotes.php?release_id=463228

相關漏洞威脅

CVE-2007-140810.0

Multiple vulnerabilities in (1) bank.php, (2) landfill.php, (3) outposts.php, (4) tribes.php, (5) house.php, (6) tribearmor.php, (...

CVE-2006-502510.0

Multiple unspecified vulnerabilities in Paisterist Simple HTTP Scanner (sHTTPScanner) before 0.2 have unknown impact and attack ve...

CVE-2006-021810.0

Multiple unspecified vulnerabilities in MyBulletinBoard (MyBB) before 1.0.2 have unspecified impact and attack vectors, related to...

CVE-2006-026010.0

Multiple unspecified vulnerabilities in Oracle Database server 9.2.0.7 and 10.1.0.5 have unspecified impact and attack vectors, as...