← Voltar para CVEs

CVE-2006-3474

N/A

Descricao

Multiple SQL injection vulnerabilities in Belchior Foundry vCard PRO allow remote attackers to execute arbitrary SQL commands via the (1) cat_id parameter to (a) gbrowse.php, (2) card_id parameter to (b) rating.php and (c) create.php, and the (3) event_id parameter to (d) search.php.

Detalhes CVE

Pontuacao CVSS v3.1N/A

Publicado7/10/2006

Ultima modificacao4/16/2026

Fontenvd

Avistamentos honeypot0

Produtos afetados

belchior_foundry:vcard

Referencias

http://securityreason.com/securityalert/1230(cve@mitre.org)

http://www.securityfocus.com/archive/1/438589/100/100/threaded(cve@mitre.org)

http://www.securityfocus.com/bid/18699(cve@mitre.org)

https://exchange.xforce.ibmcloud.com/vulnerabilities/27427(cve@mitre.org)

http://securityreason.com/securityalert/1230(af854a3a-2127-422b-91ae-364da2661108)

http://www.securityfocus.com/archive/1/438589/100/100/threaded(af854a3a-2127-422b-91ae-364da2661108)

http://www.securityfocus.com/bid/18699(af854a3a-2127-422b-91ae-364da2661108)

https://exchange.xforce.ibmcloud.com/vulnerabilities/27427(af854a3a-2127-422b-91ae-364da2661108)

Correlacoes IOC

Sem correlacoes registradas

This product uses data from the NVD API but is not endorsed or certified by the NVD.