← Volver a CVEs
CVE-2006-3474
N/ADescripcion
Multiple SQL injection vulnerabilities in Belchior Foundry vCard PRO allow remote attackers to execute arbitrary SQL commands via the (1) cat_id parameter to (a) gbrowse.php, (2) card_id parameter to (b) rating.php and (c) create.php, and the (3) event_id parameter to (d) search.php.
Detalles CVE
Puntuacion CVSS v3.1N/A
Publicado7/10/2006
Ultima modificacion4/16/2026
Fuentenvd
Avistamientos honeypot0
Productos afectados
belchior_foundry:vcard
Referencias
http://securityreason.com/securityalert/1230(cve@mitre.org)
http://www.securityfocus.com/bid/18699(cve@mitre.org)
https://exchange.xforce.ibmcloud.com/vulnerabilities/27427(cve@mitre.org)
http://securityreason.com/securityalert/1230(af854a3a-2127-422b-91ae-364da2661108)
http://www.securityfocus.com/archive/1/438589/100/100/threaded(af854a3a-2127-422b-91ae-364da2661108)
http://www.securityfocus.com/bid/18699(af854a3a-2127-422b-91ae-364da2661108)
https://exchange.xforce.ibmcloud.com/vulnerabilities/27427(af854a3a-2127-422b-91ae-364da2661108)
Correlaciones IOC
Sin correlaciones registradas
This product uses data from the NVD API but is not endorsed or certified by the NVD.