1. CVE-Search
  2. CVE-2006-0087
ID CVE-2006-0087
Summary SQL injection vulnerability in (1) pages.php and (2) detail.php in Lizard Cart CMS 1.04 allows remote attackers to execute arbitrary SQL commands via the id parameter.
References
Vulnerable Configurations
  • cpe:2.3:a:lizard_cart:lizard_cart_cms:1.0.4:*:*:*:*:*:*:*
    cpe:2.3:a:lizard_cart:lizard_cart_cms:1.0.4:*:*:*:*:*:*:*
CVSS
Base: 7.5 (as of 19-10-2018 - 15:42)
Impact:
Exploitability:
CWE NVD-CWE-Other
CAPEC
Access
VectorComplexityAuthentication
NETWORK LOW NONE
Impact
ConfidentialityIntegrityAvailability
PARTIAL PARTIAL PARTIAL
cvss-vector via4 AV:N/AC:L/Au:N/C:P/I:P/A:P
refmap via4
bid 16140
bugtraq 20060104 [eVuln] Lizard Cart CMS SQL Injection Vulnerability
misc http://www.evuln.com/vulns/12/summary.html
osvdb
  • 22199
  • 22200
sectrack 1015435
secunia 18297
sreason 314
vupen ADV-2006-0029
Last major update 19-10-2018 - 15:42
Published 05-01-2006 - 11:03
Last modified 19-10-2018 - 15:42
Back to Top